[pptp-server] RE: Can access shares on poptop server but nothing else!

Tue Mar 13 23:32:05 CST 2001

David:

I agree with Steve, you don't have any traffic past the server.
The pinging failing proves that in the post to George.
This suggests that it is a forwarding/arp issue. check the points
that Steve made and post it. Without ipchains how to control
access to you machine? netfilter?

Jerry Vonau

"Cowles, Steve" wrote:

> > -----Original Message-----
> > From: David Rankin [mailto:drankin at cox-internet.com]
> > Sent: Tuesday, March 13, 2001 10:18 PM
> > To: George Vieira; Christopher Tresco; Robert; Cowles, Steve; poptop
> > Subject: Re: Can access shares on poptop server but nothing else!
> >
> >
> > George Vieira wrote:
> >
> > > Can you view the shares using IP addresses. eg.
> > >
> > > net view \\192.168.7.xx
> > >
> > > if this fails then it's probably because you can't get
> > > throught the network (ipchains problem).
> > >
> >
> > George,
> >
> > net view /WORKGROUP:RB_LAW /yes returns the following when
> > run from my Win98 box at home. NEMESIS is the Linux/Samba/
> > PopTop server at work (aptly named), SKYLINE is home, the
> > rest are the remainder of the machines in my office (don't
> > ask how TRIPOD got its name). Everything seems OK, no name
> > resolution problems
> > at all.
> >
> > Servers available in workgroup RB_LAW.
> > Server name            Remark
> >
> > \\BERTIN               Darren's Crippled Maching
> > \\NEMESIS              RB_LAW Samba Server 2.0.7
> > \\RANKIN               DAVID C. RANKIN
> > \\SECRETARY            PIII 866 20G
> > \\SKYLINE              Home 233MHz 20G
> > \\TRIPOD               P233MMX 20G
> > The command was completed successfully.
> >
>
> Based on your prior posts... your WINS server is running on your PPTP
> server, so the above "could" actually work because the browse request (from
> the client) does not have to be routed past the PPTP server.
>
> > >
> > > Have you got the vpn PPP link totally free of ipchains
> > > firewall rules?
> >
> > Yes. I don't use ipchains, I'm behind a cable/dsl router that
> > provides NAT. Router port 1723 is forwarded to NEMESIS.

> Since you are able to establish a PPTP tunnel and at least "talk" to the

> PPTP server, I will leave the above alone. Although, I still think you have
> a routing and/or arp related problem.
>
> >
> > >
> > > Have you got ip forwarding enabled on your pptpd server?
> >
> > Uhh, I think so? All of my IP traffic goes through NEMESIS.
> > It is my internal DNS and gateway and handles all of the
> > traffic from the router and forwards it to the right machines
> > in the office. All of the machines have no problem accessing
> > the net through NEMESIS. I guess a picture would help
> >
> > [SKYLINE] => [internet] => [Linksys cable/dsl router] =>
> > [NEMESIS] =>[others on lan]
>
> What is the value of /proc/sys/net/ipv4/ip_forward  ?? It needs to be one
> (1)
>
> To check value, type: cat /proc/sys/net/ipv4/ip_forward
>
> Also, when the PPTP client connects - does /var/log/messages show the
> ethernet interface (like eth0) being set as proxy arp for the PPTP client?
> i.e.
>
> Mar 12 16:53:52 excelsior pppd[767]: found interface eth0 for proxy arp
>
> If not, you will only be able to talk to the PPTP server (from the client)
> and no further.
>
> Steve Cowles
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulteconsulting.com!