From owner-freebsd-net Fri Jun 8 12: 6:26 2001 Delivered-To: freebsd-net@freebsd.org Received: from brisefer.cediti.be (brisefer.cediti.be [193.190.156.67]) by hub.freebsd.org (Postfix) with ESMTP id B1D2E37B406 for ; Fri, 8 Jun 2001 12:06:12 -0700 (PDT) (envelope-from Olivier.Cherrier@cediti.be) Received: by brisefer.cediti.be with Internet Mail Service (5.5.2650.21) id ; Fri, 8 Jun 2001 21:03:15 +0200 Message-ID: From: Olivier Cherrier To: freebsd-net@FreeBSD.ORG Subject: RE: mpd and windows shares Date: Fri, 8 Jun 2001 21:03:07 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Hi, Hi > >I'm trying to implement a way for remote users to gain access >to a local >office's windows shares. What I currently have is a FreeBSD box with >mpd-netgraph installed, dc0 is connected to the isp via a >static ip, ne0 is >connected to the local net. > >+----------+ >+---------------------+ >| | dc0 -> 1.2.3.4 5.6.7.8 | >| >| FreeBSD |-------------------> internet <--------------| >Win 98, NT via >pptp | >| | | >| >|----------+ >+---------------------+ > | > | ne0 -> 192.168.1.90 > | > +---------------------------------------- ... etc > | | > | 192.168.1.101 | 192.168.1.102 > | | > +------+ +------+ > | NT 1 | | NT 2 | > +------+ +------+ > >mpd.conf >-------- >default: > load pptp > >pptp: > new -i ng0 pptp pptp > set iface disable on-demand > set iface enable proxy-arp > set iface idle 1800 > set bundle disable multilink > set link yes acfcomp protocomp > set link no pap chap > set link enable chap > set link keep-alive 10 60 > set ipcp yes vjcomp > set ipcp ranges 192.168.1.90/32 192.168.1.95/32 > set ipcp dns 3.4.5.6 (my isp's dns) > set ipcp nbns 192.168.1.90 > set bundle enable compression > set ccp yes mppc > set ccp yes mpp-e40 > set ccp yes mpp-e128 > set ccp yes mpp-stateless > set bundle yes crypt-reqd > >mpd.links >--------- >pptp: > set link type pptp > set pptp self 1.2.3.4 > set pptp enable incoming > set pptp disable originate Note that "set pptp self x.x.x.x" must be the network interface on which mpd waits connections. > > >When I connect with pptp I end up with ng0 being created and >the following >two commands are executed by mpd: > /sbin/ifconfig ng0 192.168.1.90 192.168.1.95 netmask >0xffffffff -link0 > /usr/sbin/arp -s 192.168.1.95 00:11:22:33:44:55 pub > (changed my >mac addr) Why don't you use the proxy-arp facility ? Mpd has proxy-arp integrated. The big Archie could correct me but, I think mpd can do the arp and network routing modification for you. > >My understanding is this makes the FreeBSD machine have an ip of >192.168.1.90 on ng0 and the traffic from the remote windows >machine will be >192.168.1.95 on ng0. From the remote machine I can ping >192.168.1.95 as >well as 192.168.1.90 but not any of the other machines. Also, >I do not have >a route from 192.168.1.95 out to the isp via 1.2.3.4. Haven't you got IPF rules activated ? oc To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message