[pptp-server] Port Forwarding

Cowles, Steve Steve at SteveCowles.com
Thu Mar 22 08:13:19 CST 2001 

> -----Original Message-----
> From: Dread Boy [mailto:dreadboy at hotmail.com]
> Sent: Thursday, March 22, 2001 12:42 AM
> To: pptp-server at lists.schulte.org
> Subject: [pptp-server] Port Forwarding
> 
> 
> On the topic of ipchains, I downloaded the document 
> http://www.monmouth.demon.co.uk/ipsubs/portfw-2.2.html which 
> refers to ipmasqadm port forwarding.
> 
> I downloaded the ipmasqadm RPM and installed it, but of 
> course, my kernel doesn't have port forwarding compiled in.
> It did, however, have it compiled in with the default RH 6.2
> installation, but since I built a new kernel to accomodate
> the MS-CHAP pptpd server, it does not have the module 
> ip_masq_portfw.o in the new /lib/modules/2.2.17 directory
> heirarchy.
> 
> When I use make menuconfig or make xconfig, I can't find 
> anything that gives me an option to enable port forwarding
> anywhere.
> 
> In the document noted above, it reads to:
> 
>    "include the following options:
> 
>     CONFIG_EXPERIMENTAL
>     CONFIG_IP_MASQUERADE
>     CONFIG_IP_MASQUERADE_IPPORTFW"
> 
> Where exactly do I include these?
> 
> Is there a configuration file under the enormous Linux kernel 
> source tree  I'm to change by hand?
> 
> Also, how does one force a module to permanently stay after 
> rebooting?  I use insmod to pop it into a list somewhere, it's in 
> modules.conf, how come it won't stay?  Do I need to use modprobe
> instead?
> 
> My apologies for the lack of knowledge here.
> 
> Thx.  Dreadly.  =)

The following .config entries are the relevant kernel networking options
that need to be enabled to create/support port forwarding (ipmasqadm). Also,
I included the masq'd PPTP options that will be required to support masq'd
PPTP tunnels from your previous post. FYI: The masq'd PPTP options will be
available once you patch your kernel. The port forwarding options (ip
masquerade) are standard equipment with any 2.2.x kernel.

Steve Cowles

-----------------------------------
CONFIG_IP_FIREWALL=y
CONFIG_IP_ROUTE_FWMARK=y
CONFIG_IP_MASQUERADE=y
CONFIG_IP_MASQUERADE_ICMP=y

CONFIG_IP_MASQUERADE_MOD=y
CONFIG_IP_MASQUERADE_IPAUTOFW=m
CONFIG_IP_MASQUERADE_IPPORTFW=m
CONFIG_IP_MASQUERADE_MFW=m

CONFIG_IP_MASQUERADE_PPTP=m
CONFIG_IP_MASQUERADE_IPSEC=m
CONFIG_IP_MASQUERADE_IPSEC_EXPIRE=30

More information about the pptp-server mailing list