[pptp-server] interfaces
Cowles, Steve
Steve at SteveCowles.com
Tue Mar 6 13:52:33 CST 2001
> -----Original Message-----
> From: Robert Dege [mailto:rcd at amherst.com]
> Sent: Tuesday, March 06, 2001 9:18 AM
> To: 'pptp-server at lists.schulte.org '
> Subject: [pptp-server] interfaces
>
>
> Since I have 2 ethernet cards (eth0 for outside internet
> access -- eth1 for local intranet), I would really prefer
> that Samba would only listen/broadcast on the local intranet
> only. For the Samba config, is this all I have to do:
>
> interfaces eth1/16
>
> (16 for the Class B network)
>
> I just want it so that Samba will not query for any smb/nmb
> on the internet deivce.
The relevant line in my smb.conf file:
interfaces = lo eth0
FYI: eth0 is my private interface.
>
> Will this cause problems for the PPTP clients though? or will being
> assigned a remote ip compensate for that?
>
To answer your question: If your ipchain rules are properly configured, this
will not cause a problem.
Don't get confused by your requirement to block (DENY) SMB/NMB packets on
eth0 (as you should) versus ACCEPTING/FORWARDING PPTP tunnel packets which
"could" contain an encapsulated SMB/NMB packets!
> If not interfaces, would hosts allow be a better solution?
>
> host allow 172.28. 127.0.0.1
>
> 172.28. -- our local intranet first two octets.
> 127.0.0.1 -- local host
>
> Just want to make sure.
>
The relevant line in my smb.conf file:
hosts allow = 127.0.0.1/255.0.0.0 192.168.9.0/255.255.255.0
FYI: eth0 is my private interface.
Steve Cowles
More information about the pptp-server
mailing list