[pptp-server] Newbie question: routing problem?

George Vieira GeorgeV at citadelcomputer.com.au
Mon Dec 10 14:52:13 CST 2001 

We really need to have a peep at your logs for pppd. I don't think your SMC
firewall is passing/NATing GRE through is it? I don't even think this will
work as I've seen talks about NATing which doesn't work for pptpd..
 
Have you tried connecting to your server within the LAN (locally).. if this
works then your setup/options are fine but the outside conection is the
problem. My bet it's the SMC firewall..
 
Don't forget to pass protocol 47.


thanks, 
George Vieira 
Systems Manager 
Citadel Computer Systems P/L 

-----Original Message-----
From: Jimmy Henson [mailto:jhenson at connecterra.com]
Sent: Tuesday, 11 December 2001 5:15 AM
To: pptp-server at lists.schulte.org
Subject: [pptp-server] Newbie question: routing problem?


Hi folks,
 
I've been able to get my Linux pptpd server up and running, thanks to the
fine HOWTO document prepared by Mr. Spotswood.  But I have a strange
problem, and my logs aren't providing any helpful clues.  
 
My pptpd server is running behind a SMC Barricade firewall, and I've opened
port 1723 to the server.  The firewall performs NATting, of course, and the
pptpd server sits on the LAN.  With a Windows client (Win 2K and Win ME
tested) on the WAN, I can connect to the pptpd server with no problem.
However, after I connect, I can't ping *anything* on the VPN -- not even the
pptpd server to which I'm connected!  The pptpd server isn't running a
firewall (e.g. netfilter/iptables), and from the pptpd server console, I can
see (ping) the rest of my LAN.
 
As for the cause of my problem, I've considered several possibilities:
* GRE.  Is my firewall incapable of passing GRE?
* Mis-configured kernel.  I recompiled my kernel in order to get pptpd to
work -- could I have left out an important module?
* Routing.  My pptpd server is running on a single NIC box.  Do I still need
to worry about routing (e.g. do I need to run "routed" and/or enable ipv4
packet forwarding?)
 
I'm stumped.  Am I overlooking something incredibly basic??
Thanks for reading,
Jimmy
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/20011211/06470ebb/attachment.html>

More information about the pptp-server mailing list