[pptp-server] ip-masquerade with ip-chains (security?)
Bo O. Erichsen
bo at erichsen.com
Fri Apr 21 09:00:12 CDT 2000
Hi pptp-list.
I've just set up pptp with pppd and ip-chains and it seems to work great..
I couldn't make the ip-chains setup (i read in the howto) to work though.. So
i'm not sure that my security is up to date..
My set up is:
pptp.conf:
localip 192.168.0.234-238
remoteip 192.168.1.234-238
pptp-clients fw+pptp local-net servers
192.168.1.234-238 192.168.0.1 192.168.0.2-233
my rc.firewall is:
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s 192.168.0.0/24 -j MASQ
/sbin/ipchains -A forward -s 192.168.1.0/24 -j MASQ
I'm not sure that this setup is secure enough.. i know it works.. because the
clients can reach local servers and the internet ..
Anybody has any comments?
--------------
Bo O. Erichsen
Corp. email: bo at jay.net * Priv. email: bo at erichsen.com
Phone: +45 33 36 63 00 * Direct Call +45 33 36 63 04
Cell phone: +45 26 27 13 42
Jay.net
Frederiksgade 7
1265 KBH K
Denmark
More information about the pptp-server
mailing list