[pptp-server] PoPToP on RedHat 7.2
Michael Jennings
mej at kainx.org
Wed May 1 09:36:35 CDT 2002
On Wednesday, 01 May 2002, at 09:09:34 (-0400),
Jason Staudenmayer wrote:
> Check your FIREWALL rules you need port 47 and 1723 open or forwarded
I believe you mean *protocol* 47 and port 1723. :) Here is the
snippit from my iptables configuration pertaining to those two items:
$IPTABLES -t nat -A PREROUTING -i ${EXT_IF}+ -p tcp --dport 1723 -j ACCEPT
$IPTABLES -A INPUT -i ${EXT_IF}+ -p tcp --dport 1723 -j ACCEPT
$IPTABLES -t nat -A OUTPUT -o ${EXT_IF}+ -p 47 -j ACCEPT
$IPTABLES -A OUTPUT -o ${EXT_IF}+ -p 47 -j ACCEPT
$IPTABLES -A INPUT -i ${EXT_IF}+ -p 47 -j ACCEPT
$IPTABLES -A INPUT -i ppp+ -s $INT_NET -d $INT_NET -j ACCEPT
$IPTABLES -A OUTPUT -o ppp+ -s $INT_NET -d $INT_NET -j ACCEPT
$IPTABLES -A FORWARD -i ppp+ -o ${EXT_IF}+ -p 47 -s $INT_NET -d $INT_NET -j ACCEPT
$IPTABLES -A FORWARD -o ppp+ -i ${EXT_IF}+ -p 47 -s $INT_NET -d $INT_NET -j ACCEPT
$IPTABLES -A FORWARD -i ppp+ -o ${EXT_IF}+ -s $INT_NET -j ACCEPT
$IPTABLES -A FORWARD -o ppp+ -i ${EXT_IF}+ -d $INT_NET -j ACCEPT
Are those rules not correct?
Michael
--
Michael Jennings (a.k.a. KainX) http://www.kainx.org/ <mej at kainx.org>
n+1, Inc., http://www.nplus1.net/ Author, Eterm (www.eterm.org)
-----------------------------------------------------------------------
"God hears them cry. (Thou shalt not kill.) You hear the lie. (Do
what you will.) And you simply look the other way."
-- Holy Soldier, "See No Evil" (re abortion)
More information about the pptp-server
mailing list