Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 21 Jan 2003 10:18:22 -0700
From:      Robert Martin <robert.martin@shunda.com>
To:        freebsd-net@FreeBSD.org
Subject:   PPTP passthrough on FreeBSD 4.4
Message-ID:  <092443616.20030121101822@shunda.com>

next in thread | raw e-mail | index | archive | help
First of all, I hope that this isn't something obvious that I've
missed. I've searched everything I can think of, but have come up
empty so far. Maybe somebody here will be able to help. If this is
the wrong mailing list, sorry, and please let me know which one I
should post to.


I am trying to get a FreeBSD ipfw firewall to pass Windows PPTP
client traffic through to a Windows NT box behind the firewall. I
have successfully used the pptpalias command in natd on a FreeBSD 3.4
box over the last couple of years to pass through PPTP traffic to
both NT and 2000 servers. However I now have a client with a FreeBSD
4.4 box that wants to do the same thing, and unfortunately pptpalias
has not been included in natd since 4.0.

If I am correct, all I should need to do is put a redirect_proto line
in natd.conf instead of the pptpalias line, like below:

redirect_proto 47  192.168.0.51
redirect_port  tcp 192.168.0.51:1723 1723


I think I have the redirect_proto line correct. But, I might not.
I've tried it with GRE instead of 47, but that didn't work either.

The thing that bothers me is that when I run ethereal on the Windows
server behind the firewall, I see 0 GRE packets and 0 1723 packets.
So that makes me think it's the firewall.

Is there a problem with my natd.conf, or do I need a firewall rule?
Or is it because of the funky combination of XP PPTP clients, FreeBSD
PPTP passthrough and NT PPTP severs? Or is it something more serious
like needing to recompile the kernel?

Any and all help will be greatly appreciated.


Regards,


Robert Martin
robert.martin@shunda.com



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?092443616.20030121101822>