[pptp-server] pptpd problems getting connected
Nick Rout
nick at taxlawyer.co.nz
Sat Jun 9 00:02:47 CDT 2001
Its a ipchains on kernel 2.2.17. Theres a long list of rules. In the input
and output chains i have the following:
ipchains -A input -j ACCEPT -i $EXTIF -p 47 -s $UNIV -d $EXTIP
ipchains -A input -j ACCEPT -i $EXTIF -p tcp -s $UNIV -d $EXTIP 1723
ipchains -A input -j ACCEPT -i $EXTIF -p udp -s $UNIV -d $EXTIP 1723
ipchains -A output -j ACCEPT -i $EXTIF -p 47 -s $EXTIP -d $UNIV
ipchains -A output -j ACCEPT -i $EXTIF -p tcp -s $EXTIP 1723 -d $UNIV
ipchains -A output -j ACCEPT -i $EXTIF -p udp -s $EXTIP 1723 -d $UNIV
where:-
$EXTIF = ppp0
$EXTIP = my public ip address (ie the address of ppp0)
$UNIV = 0.0.0.0/0
(I think the udp on port 1723 is superfluous and i'll remove it
sometimerealsoonnow.)
(there are no forwarding rules as the poptop daemon is on the firewall)
--On Friday, 8 June 2001 23:21 -0500 robert <berzerke at swbell.net> wrote:
> Error 650 is a sure sign of firewall problems. These can be extremely
> tricky. "Nat" is probably one of the hardest parts to get right. What
> firewall are you using and what are the rule?
>
> On Friday 08 June 2001 21:16, Nick Rout wrote:
>> I am having problems with pptpd on a linux firewall box. I am pretty
>> sure I have dealt with gre and port 1723 correctly. here is a log. on
>> the windows 98 end I get an error 650. after the attempt pppd is left
>> running (according to ps) and needs to be killed. It has a pid one
>> higher than the pid for pptpd shown in the logs.
>>
>> I have had pptpd going previously and my options are all the same as on
>> the other machine it ran on. can anyone give me any pointers please?
>>
>> Jun 9 13:56:40 gateway pptpd[23832]: CTRL: Client 203.97.104.225 control
>> connection started
>> Jun 9 13:56:40 gateway pptpd[23832]: CTRL: Starting call (launching
>> pppd, opening GRE)
>> Jun 9 13:57:14 gateway pptpd[23832]: CTRL: Error with select(), quitting
>> Jun 9 13:57:14 gateway pptpd[23832]: CTRL: Client 203.97.104.225 control
>> connection finished
>>
>>
>> _______________________________________________
>> pptp-server maillist - pptp-server at lists.schulte.org
>> http://lists.schulte.org/mailman/listinfo/pptp-server
>> List services provided by www.schulteconsulting.com!
More information about the pptp-server
mailing list