[pptp-server] Bypassing the firewall
Sexy Boy
Sexy-Boy at NetCourrier.Com
Mon Aug 20 17:39:32 CDT 2001
Don't worry, i am very concerned with my company security and i would not do
anything which could compromised its security. The external we're talking
about is my linux box at home. In that case, security is only compromised if
and only if the potential hackers took control of my linux box AND are
waiting for me to dial in through the VPN AND that IP routing is enabled on
my NT workstation at work. The last condition is not met and i hope the
first condition would never be !
Now the story of the firewall :-) :
Two month ago, my company don't use emails (weird !), so they decide to use
an external company for the email (server, connection to internet, etc ...).
So we use a dedicated line between them and us. This line is primaly used
for emails, but in the way they have configure their firewall, we can use
basic ports like : 80,443 (probably for webmail), 21 (FTP), 110 (POP) and 25
SMTP.
=> This firewall configuration is the same for all their clients, so that
why we don't ask them to change anything in their firewall (i hate my
customer asking me special treats, so i don't want to bother them with my
request). That's why i am trying to find another solutions. Hope someone
could help me !
Thanks and bye,
Francois.
-----Message d'origine-----
De : pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]De la part de Stan A. Rogge
Envoyé : dimanche 19 août 2001 00:42
À : pptp-server at lists.schulte.org
Objet : Re: [pptp-server] Bypassing the firewall
Isn't the purpose of your company's firewall to prevent exactly what your
trying to do?
If you are successful bringing up an external Network link into the middle
of your company's internal network, isn't your company's Network Security
compromised?
----- Original Message -----
From: "Sexy Boy" <Sexy-Boy at NetCourrier.Com>
To: <pptp-server at lists.schulte.org>
Sent: Saturday, August 18, 2001 4:38 PM
Subject: [pptp-server] Bypassing the firewall
> Hi,
>
> I have a litlle (big for me :-) problem and if some can help me it would
be
> cool. So this is my problem :
>
> At home, i configure a PPTP server on my linux box and it is working fine.
>
> At my office, i would like to connect my NT 4.0 Workstation to my linux
> server but the problem is the firewall which allows only connection to
port
> 21, 25, 80, 110, 443 but not 1723 ! (There is no way to change the
firewall
> setting because it's managed by an external company and i can't ask them
to
> change anything !)
>
> So what i'm trying to do is bypass the firewall with port redirection :
>
> On my NT 4.0 : i redirect local port 1723 to the remote port 443 on
my
> linux box
> On my Linux server : i redirect local port 443 to local port 1723
>
> So if i want to connect to my Linux server on port 1723, i configure the
RAS
> to connect to localhost:1723 which is redirect to remote:443 (this bypass
> the firewall) => redirect to linux:1723.
>
> The redirection is OK because i see the packet to my linux server (with
> tcpdump).
> The problem is that my Linux server considers that a local connection is
> attempted and refuse the connection !!!
>
> So my question is : Is there a way to allow local connection to a PPTP
> server (local connection = server and client on the same machine like FTP
or
> HHTP) ?
>
> Thanks a lots,
> Francois.
>
> _______________________________________________
> pptp-server maillist - pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> --- To unsubscribe, go to the url just above this line. --
>
_______________________________________________
pptp-server maillist - pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
--- To unsubscribe, go to the url just above this line. --
More information about the pptp-server
mailing list