[pptp-server] Wrong netmask
Jerry Vonau
jvonau at home.com
Sun Jan 14 23:29:34 CST 2001
Just a thought:
Could you not just let it have the 255.255.0.0 netmask change the
options to match,
and adjust the chains and routing?
ie:
/sbin/route add -net 172.16.0.0 netmask 255.255.0.0 dev ethx
I don't think there is any thing wrong with having 2 network route on
the same interface,
Anybody???
/sbin/ipchains -A input -j ACCEPT -i INTIF -s 172.16.0.0/16 -d
172.16.0.0/16
/sbin/ipchains -A output -j ACCEPT -i INTIF -s 172.16.0.0/16 -d
172.16.0.0/16
/sbin/ipchains -A input -j ACCEPT -i ppp+ -s 172.16.0.0/16 -d
172.16.0.0/16
/sbin/ipchains -A output -j ACCEPT -i ppp+ -s 172.16.0.0/16 -d
172.16.0.0/16
sbin/ipchains -A forward -j ACCEPT -i ppp+ -s 172.16.0.0/16 -d
172.16.0.0/16
sbin/ipchains -A forward -j ACCEPT -i INTIF -s 172.16.0.0/16 -d
172.16.0.0/16
wouldn't the /16 netmask include all of the /24 subnets??
If the kernel sees them a 2 different netwoks then maybe:
/sbin/ipchains -A input -j ACCEPT -i INTIF -b -s 172.16.0.0/24 -d
172.16.0.0/16
/sbin/ipchains -A output -j ACCEPT -i INTIF -b -s 172.16.0.0/24 -d
172.16.0.0/16
/sbin/ipchains -A input -j ACCEPT -i ppp+ -b -s 172.16.0.0/24 -d
172.16.0.0/16
/sbin/ipchains -A output -j ACCEPT -i ppp+ -b -s 172.16.0.0/24 -d
172.16.0.0/16
/sbin/ipchains -A forward -j ACCEPT -i INTIF -b -s 172.16.0.0/24 -d
172.16.0.0/16
/sbin/ipchains -A forward -j ACCEPT -i ppp+ -b -s 172.16.0.0/16 -d
172.16.0.0/24
Anyone have any thoughts..........
Jerry Vonau
More information about the pptp-server
mailing list