From owner-freebsd-hackers  Mon Aug 31 15:22:56 1998
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id PAA16003
          for freebsd-hackers-outgoing; Mon, 31 Aug 1998 15:22:56 -0700 (PDT)
          (envelope-from owner-freebsd-hackers@FreeBSD.ORG)
Received: from awfulhak.org (awfulhak.force9.co.uk [195.166.136.63])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA15998
          for <freebsd-hackers@FreeBSD.ORG>; Mon, 31 Aug 1998 15:22:52 -0700 (PDT)
          (envelope-from brian@Awfulhak.org)
Received: from gate.lan.awfulhak.org (brian@localhost [127.0.0.1])
	by awfulhak.org (8.8.8/8.8.8) with ESMTP id WAA05687;
	Mon, 31 Aug 1998 22:54:49 +0100 (BST)
	(envelope-from brian@Awfulhak.org)
Message-Id: <199808312154.WAA05687@awfulhak.org>
X-Mailer: exmh version 2.0.2 2/24/98
To: Dru Nelson <dnelson@redwoodsoft.com>
cc: "Pitcairn, Duncan" <DuncanP@Cairnwood.com>, freebsd-hackers@FreeBSD.ORG
Subject: Re: I added Microsoft VPN / PPTP for NATD 
In-reply-to: Your message of "Tue, 28 Jul 1998 23:26:08 PDT."
             <Pine.BSF.3.91.980728231609.2539a-100000@pacman.redwoodsoft.com> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Mon, 31 Aug 1998 22:54:49 +0100
From: Brian Somers <brian@Awfulhak.org>
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi,

Have you contacted anyone yet ?  Do you want to send the patches to 
me ?

Cheers.

> Hi,
> 
> I needed to VPN to work from a machine on my network so I added the code
> to the NATD today. It works great. (The natd and libalias code is very 
> good, so it wasn't hard)
> 
> Essentially, I added a command line paramater called 'pptpalias' with
> an argument of the ip address of the machine on the inside that is to
> be used for the pptp service (client or server). The firewall should
> then pass PPTP (IP GRE packets) traffic directly to that machine after
> translation.
> 
> I read on one of the posts to this list 
> that the linux version acts similarly. Apparently, there isn't a port 
> number to translate (or the microsoft implmentation doesn't implement it 
> correctly). So, this works for a single machine on the inside to any 
> machine on the outside. This should work fine for telecommuters or a 
> single server behind the firewall.
> 
> I will be contacting someone who maintains the nat stuff to see if they 
> want it. I'm running on 
> 2.2.5-RELEASE. The changes are to the libalias files and the natd.c.
> 
> I'm not on this list, so please reply to me in email directly...
> 
> Take it easy,
> 
> Dru Nelson
> Redwood City, California

-- 
Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
      <http://www.Awfulhak.org>
Don't _EVER_ lose your sense of humour....



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message