[pptp-server] pptpd problems getting connected

robert berzerke at swbell.net
Sat Jun 9 09:39:29 CDT 2001 

There are some sample rules for ipchains.  Search the list archives.  I use 
iptables, so I can't help you much.  The biggest problem is NAT.  Is either 
end NAT'd?

On Saturday 09 June 2001 00:02, Nick Rout wrote:
> Its a ipchains on kernel 2.2.17. Theres a long list of rules. In the input
> and output chains i have the following:
>
> ipchains -A input -j ACCEPT -i $EXTIF -p 47 -s $UNIV -d $EXTIP
> ipchains -A input -j ACCEPT -i $EXTIF -p tcp -s $UNIV -d $EXTIP 1723
> ipchains -A input -j ACCEPT -i $EXTIF -p udp -s $UNIV -d $EXTIP 1723
>
> ipchains -A output -j ACCEPT -i $EXTIF -p 47  -s $EXTIP  -d $UNIV
> ipchains -A output -j ACCEPT -i $EXTIF -p tcp -s $EXTIP 1723 -d $UNIV
> ipchains -A output -j ACCEPT -i $EXTIF -p udp -s $EXTIP 1723 -d $UNIV
>
> where:-
> $EXTIF = ppp0
> $EXTIP = my public ip address (ie the address of ppp0)
> $UNIV = 0.0.0.0/0
>
>
> (I think the udp on port 1723 is superfluous and i'll remove it
> sometimerealsoonnow.)
> (there are no forwarding rules as the poptop daemon is on the firewall)
>
> --On Friday, 8 June 2001 23:21 -0500 robert <berzerke at swbell.net> wrote:
> > Error 650 is a sure sign of firewall problems.  These can be extremely
> > tricky.  "Nat" is probably one of the hardest parts to get right.  What
> > firewall are you using and what are the rule?
> >
> > On Friday 08 June 2001 21:16, Nick Rout wrote:
> >> I am having problems with pptpd on a linux firewall box. I am pretty
> >> sure I have dealt with gre and port 1723 correctly. here is a log. on
> >> the windows 98 end I get an error 650. after the attempt pppd is left
> >> running (according to ps) and needs to be killed. It has a pid one
> >> higher than the pid for pptpd shown in the logs.
> >>
> >> I have had pptpd going previously and my options are all the same as on
> >> the other machine it ran on. can anyone give me any pointers please?
> >>
> >> Jun  9 13:56:40 gateway pptpd[23832]: CTRL: Client 203.97.104.225
> >> control connection started
> >> Jun  9 13:56:40 gateway pptpd[23832]: CTRL: Starting call (launching
> >> pppd, opening GRE)
> >> Jun  9 13:57:14 gateway pptpd[23832]: CTRL: Error with select(),
> >> quitting Jun  9 13:57:14 gateway pptpd[23832]: CTRL: Client
> >> 203.97.104.225 control connection finished
> >>
> >>
> >> _______________________________________________
> >> pptp-server maillist  -  pptp-server at lists.schulte.org
> >> http://lists.schulte.org/mailman/listinfo/pptp-server
> >> List services provided by www.schulteconsulting.com!

More information about the pptp-server mailing list