[pptp-server] pptpd problems getting connected

Nick Rout nick at taxlawyer.co.nz
Sat Jun 9 00:02:47 CDT 2001


Its a ipchains on kernel 2.2.17. Theres a long list of rules. In the input 
and output chains i have the following:

ipchains -A input -j ACCEPT -i $EXTIF -p 47 -s $UNIV -d $EXTIP
ipchains -A input -j ACCEPT -i $EXTIF -p tcp -s $UNIV -d $EXTIP 1723
ipchains -A input -j ACCEPT -i $EXTIF -p udp -s $UNIV -d $EXTIP 1723

ipchains -A output -j ACCEPT -i $EXTIF -p 47  -s $EXTIP  -d $UNIV
ipchains -A output -j ACCEPT -i $EXTIF -p tcp -s $EXTIP 1723 -d $UNIV
ipchains -A output -j ACCEPT -i $EXTIF -p udp -s $EXTIP 1723 -d $UNIV

where:-
$EXTIF = ppp0
$EXTIP = my public ip address (ie the address of ppp0)
$UNIV = 0.0.0.0/0


(I think the udp on port 1723 is superfluous and i'll remove it 
sometimerealsoonnow.)
(there are no forwarding rules as the poptop daemon is on the firewall)


--On Friday, 8 June 2001 23:21 -0500 robert <berzerke at swbell.net> wrote:

> Error 650 is a sure sign of firewall problems.  These can be extremely
> tricky.  "Nat" is probably one of the hardest parts to get right.  What
> firewall are you using and what are the rule?
>
> On Friday 08 June 2001 21:16, Nick Rout wrote:
>> I am having problems with pptpd on a linux firewall box. I am pretty
>> sure I have dealt with gre and port 1723 correctly. here is a log. on
>> the windows 98 end I get an error 650. after the attempt pppd is left
>> running (according to ps) and needs to be killed. It has a pid one
>> higher than the pid for pptpd shown in the logs.
>>
>> I have had pptpd going previously and my options are all the same as on
>> the other machine it ran on. can anyone give me any pointers please?
>>
>> Jun  9 13:56:40 gateway pptpd[23832]: CTRL: Client 203.97.104.225 control
>> connection started
>> Jun  9 13:56:40 gateway pptpd[23832]: CTRL: Starting call (launching
>> pppd, opening GRE)
>> Jun  9 13:57:14 gateway pptpd[23832]: CTRL: Error with select(), quitting
>> Jun  9 13:57:14 gateway pptpd[23832]: CTRL: Client 203.97.104.225 control
>> connection finished
>>
>>
>> _______________________________________________
>> pptp-server maillist  -  pptp-server at lists.schulte.org
>> http://lists.schulte.org/mailman/listinfo/pptp-server
>> List services provided by www.schulteconsulting.com!







More information about the pptp-server mailing list