[pptp-server] pptp portforwarding

Heusden, Folkert van f.v.heusden at ftr.nl
Mon Mar 20 03:23:54 CST 2000


> On our intranet, we're running an NT-server capable of ding pptp.
> I've been trying to get pptp working on the linux-box, but couldn't
> get it to work, so I decided to have the router (linux) forward it's
> incoming pptp-connections to the nt-box, as it does with smtp and
> pop3-sessions. Should do, shouldn't it?
> Ok, I got these firewall-rules:
> PPTP forwarding:
> /sbin/ipchains -I input -p tcp -y -d __INTERNET_IP_ADDRESS__/32 1723 -m 1
> /usr/sbin/ipmasqadm mfw -A -m 1 -r __IP_ADDRESS_FOR_THE_NT_BOX__ 1723 -p
10
> /sbin/ipchains -I input -p 47 -d __INTERNET_IP_ADDRESS__/32 -m 2
> /usr/sbin/ipmasqadm mfw -A -m 2 -r __IP_ADDRESS_FOR_THE_NT_BOX__ -p 10
> but that doesn't seem to work.
> Anyone got any suggestions?

SMS> you have to forward GRE..

How do I do that? The FAQ was not so helpfull ;-/
(also pretty much 2.0.x oriented)

Also, is this not already forwarding the GRE?
> /sbin/ipchains -I input -p 47 -d __INTERNET_IP_ADDRESS__/32 -m 2
> /usr/sbin/ipmasqadm mfw -A -m 2 -r __IP_ADDRESS_FOR_THE_NT_BOX__ -p 10

I rewrote part of it and got this:
ipmasqadm portfw -a -P tcp -L 212.115.175.146 1723 -R 192.168.0.1 1723
looks better :o)




More information about the pptp-server mailing list