[pptp-server] Verification of PPTP Tunnel

P39036 P39036 at exchange.sihe.ac.uk
Thu Aug 30 05:05:16 CDT 2001 

Sorry, George, I should have been more specific. The setup is very simple.

The PPTP client (Win98SE) has IP address 192.168.11.2. The Linux PPTP Server
has IP address 193.62.x.x, and is also the web server. So, we just have two
machines in total here, not an extended LAN (this is just a demo for my MSc
project).

The tunnel authenticates and runs fine (problems with MPPE, but that's
another story). It still works when I deny all traffic at the Cisco
interface except GRE (47) and PPTP (1723). The problem is that the client
(192.168.11.2) can't browse to the web server (193.62.x.x) unless I also
permit HTTP (80) at the Cisco interface. Doesn't this mean that the client
is for some reason ignoring the tunnel to the server ? I just can't work it
out.

Regards, Ken John
BSc PGDip CCNA





> ----------
> From: 	George Vieira[SMTP:GeorgeV at citadelcomputer.com.au]
> Sent: 	30 August 2001 00:11
> To: 	'P39036'; 'pptp-server at lists.schulte.org'
> Subject: 	RE: [pptp-server] Verification of PPTP Tunnel
> 
> This all depends on how your browsing the page....
> 
> If your tunnel IPs are 192.168.0.1 <-> 192.168.0.2 and your browsing the
> outside IP address eg. 203.xxx.xxx.xxx then this won't work... you must
> browse the tunnel IP of the server.
> 
> Can you provide the setup information and anything else with it that we
> can
> check what's going on.....
> 
> thanks,
> George Vieira
> Network Engineer
> Citadel Computer Systems P/L
> PH +(61)2 9955 2644
> FX +(61)2 9955 2659
> 
> -----Original Message-----
> From: P39036 [mailto:P39036 at exchange.sihe.ac.uk]
> Sent: Thursday, August 30, 2001 12:43 AM
> To: 'pptp-server at lists.schulte.org'
> Subject: [pptp-server] Verification of PPTP Tunnel
> 
> 
> Hi all
> 
> This may be a simple question, but I hope you can help me with it.
> I have a Win98SE client, communicating via a PPTP tunnel with a Linux
> server.
> 
> How can I be sure that the packets passing between them are travelling
> THROUGH the tunnel, and not just going round it ?
> 
> For example, I want the client to send a HTTP request and download a web
> page from the server, all through the tunnel. Yet, when I deny port 80
> (HTTP) at the Cisco router between them, the browsing is stopped. This
> suggests to me that the tunnel is not being used.
> 
> Do I have to set up a special gateway at the client/server to force all
> communications through the tunnel ? Am I just being dumb ?
> 
> Thanks in advance.
> 
> Ken John
> BSc PGDip CCNA
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> --- To unsubscribe, go to the url just above this line. --
>

More information about the pptp-server mailing list