[pptp-server] Connect linux PPTP server with NT VPN server?

[Cowles, Steve]

> -----Original Message-----
> From: Florian Eggert [mailto:news at eflorian.de]
> Sent: Thursday, December 07, 2000 8:19 AM
> To: pptp-server at lists.schulte.org
> Subject: [pptp-server] Connect linux PPTP server with NT VPN server?
> 
> 
> Hi!
> I need some help with setting up the pptp server the way I need it.
> This is my situation.
> 
> Windows NT Box -- LAN -- Linux Box -- Internet -- VPN Server 
> (running NT).
> 
> I need to connect to the NT VPN server with my own NT box. I 
> can access the internet only via my linux box. The linux machine
> is also running a firewall. I can ping the ip address of the NT
> VPN server, but connect to it. I think this is due to the lack
> of pptp ipsec masquerading support of my linux (2.2.16).
> Now the big question: Would it be a solution for me to set up the
> pptp server on my linux box? Can I connect the linux pptp server 
> with the VPN NT server and then access this connection from my
> own NT machine?
> Any help is appreciated, since a solution is very important for me.
> 
> Thanks,
> Florian

I think you are limited to the two options (solutions) you talked about in
your post. Both will work. They are just implemented differently.

Connecting from your WinNT box (behind Linux firewall):
1) You will need to apply John Hardin's VPN masq patches to your firewalls
kernel.
2) Open the appropriate port/protocols for PPTP. protocol 47/TCP port 1723

Connecting from firewall with PPTP client (not server):
1) No need to apply John Hardin's VPN masq patches
2) Open the appropriate port/protocols for PPTP. protocol 47/TCP port 1723
3) Insure routing tables and ipchain rules reflect using PPP device for
packets destined for the remote LAN.

The later option is typically considered a LAN to LAN tunnel as opposed to a
HOST to LAN tunnel in the first option. Although, you really have not
specified the LAN (if any) at the remote NT VPN server.

Steve Cowles