[pptp-server] I think I have arouting problem - can you help

[Greg Kopp]

I have PoPToP working on my linux box - sort of.

Here is my configuration:

We have a class C connect to the internet. I have the Class C routed into a
firewall.

I have one subnet (x.x.x.0/255.255.255.128, hosts 1-126, gw=.1) routed to a
Lan network.

I have another subnet (x.x.x.128/255.255.255.192, hosts 129-190, gw=.129)
routed to a DMZ network for web servers and such.

I want to use another subnet (x.x.x.192/255.255.255.248, hosts 193-198) for
my remote IP addresses.

My PPTP server is x.x.x.4

My /etc/pptp.conf file is:

localip x.x.x.5
remoteip x.x.x.193-197

My /etc/ppp/options file is:

lock
debug
auth
+chap
proxyarp

My /etc/ppp/chap-secrets file is:

# Secrets for authentication using CHAP
# client        server  secret                  IP addresses
user   *       pass  *

I can connect to the PPTP server using my Win98 box and it's built in VPN
support. But... When it tries to log me into the network (the NT domain) I
get an error that it cannot find a domain controller. Also, from the remote
client, if I ping x.x.x.5 (the remote IP) it replies. if I ping x.x.x.4 (the
PPTP server) it replies. If I ping x.x.x.64 (a server on the LAN) I get no
reply. I'm thinking it's a routing issue. So I added a manual route to the
firewall (route add -net x.x.x.192 netmask 255.255.255.248 gw x.x.x.4). My
assumption is that x.x.x.64 could not find a path to the remote host
x.x.x.193 (the remote IP of my VPN client). It should send that packet to
the firewall, which should (I think?) forward the packet back to the LAN,
but to x.x.x.4, the PPTP server. I have routing enable on the PPTP server.

I'm not sure what's holding it up. Any help you could be would be greatly
appreciated.

Greg