[pptp-server] Pptp is working, however something's wrong!
Jerry Vonau
jvonau at home.com
Mon Oct 15 18:51:22 CDT 2001
Steve:
Just a quick thought.. using the -A option with ipchains places it at
the end of the rules.
This line needs to be before any masq lines, or it may cause a problem.
Connections from the
lan would be masq'ed in error while connections from ppp are forwarded
correctly.
First match of rules wins.... need to see a little more of your rules.
Jerry Vonau
Steve Host wrote:
>
> Setup: Dialup clients, connecting via PPTP to Linux gateway.
>
> Current state: client can ping any internal addresses, it can also browse
> any computers and retrieve files. Printing over network is no problem.
> Machines behind firewall on the LAN can not ping the clients assigned IP
> address, thus they can't reach the client.
>
> Client also doesn't see all the machines by default on network neighbourhood
> (however //<name> works)
>
> I'm mostly concerned with the seemingly one way nature of the connection,
> and looking for possible causes of this.
>
> I've set the samba server to act as a WINS server, however only the dialup
> client is aware of the server. I don't believe this should make a
> difference.
>
> Forwarding rules:
>
> /sbin/ipchains -A input -p TCP -d 0.0.0.0/0 1723 -j ACCEPT
> /sbin/ipchains -A input -p 47 -j ACCEPT
>
> /sbin/ipchains -A output -p TCP -s 0.0.0.0/0 1723 -j ACCEPT
> /sbin/ipchains -A output -p 47 -j ACCEPT
> /sbin/ipchains -A forward -s 192.168.1.0/24 -d 192.168.1.0/24 -j ACCEPT
>
> The last line is because the Client's IP range is 192.168.1.150-160 while
> PC's are in the 192.168.1.20-30 range
>
> Thanks, folks.
>
> _______________________________________________
> pptp-server maillist - pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> --- To unsubscribe, go to the url just above this line. --
More information about the pptp-server
mailing list