Date: Tue, 31 Oct 2000 14:18:52 -0700 (MST) From: "Mark J. Sommer" <msommer@argotsoft.com> To: peter@sysadmin-inc.com Cc: freebsd-net@freebsd.org Subject: Re: getting mpd-netgraph pptp to work throug ipfw firewall with natd Message-ID: <200010312118.OAA03064@argotsoft.com> In-Reply-To: <000001c0437b$e1a68940$47010a0a@fire.sysadmininc.com> from Peter Brezny at "Oct 31, 2000 03:48:09 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
Here's the lines I have for PPTP in rc.firewall:
# Allow connections on pptp.
$fwcmd add pass tcp from any 1723 to any 1024-65535 out xmit ${oif}
$fwcmd add pass tcp from any 1024-65535 to any 1723 in recv ${oif}
$fwcmd add pass 47 from any to any out xmit ${oif}
$fwcmd add pass 47 from any to any in recv ${oif}
oif=outside interface
[Charset iso-8859-1 unsupported, filtering to ASCII...]
> A while back someone asked how to get this working and Archie replied...
> ===
> Should work fine.. just make sure you allow TCP port 1723 and
> IP proto #47 to reach mpd.
>
> -Archie
> ===
> could anyone elaborate on this, specifically the ip proto#47 part and/or
> share a couple example ipfw rules?
>
> TIA
>
> Peter Brezny
> SysAdmin Services, Inc.
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-net" in the body of the message
>
~Mark
--------------------------------------------------------------------------------
Mark J. Sommer ARGOT Software Corporation,
P.O. Box 92020, Albuquerque, New Mexico 87199-2020
FAX: 505-771-0274 PHONE: 505-867-6750 E-MAIL: msommer@argotsoft.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010312118.OAA03064>