Date: Thu, 23 Jan 2003 11:05:51 -0700 From: Robert Martin <robert.martin@shunda.com> To: freebsd-isp@FreeBSD.org Subject: PPTP passthrough on FreeBSD 4.4 Message-ID: <1429470107.20030123110551@shunda.com>
next in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 (I submitted this a couple of days ago to freebsd-net, and didn't hear anything, so I thought I'd try this list. Hopefully somebody can help me out. --RWM) I am trying to get a FreeBSD ipfw firewall to pass Windows PPTP client traffic through to a Windows NT box behind the firewall. I have successfully used the pptpalias command in natd on a FreeBSD 3.4 box over the last couple of years to pass through PPTP traffic to both NT and 2000 servers. However I now have a client with a FreeBSD 4.4 box that wants to do the same thing, and unfortunately pptpalias has not been included in natd since 4.0. If I am correct, all I should need to do is put a redirect_proto line in natd.conf instead of the pptpalias line, like below: redirect_proto 47 192.168.0.51 redirect_port tcp 192.168.0.51:1723 1723 I think I have the redirect_proto line correct. But, I might not. I've tried it with GRE instead of 47, but that didn't work either. The thing that bothers me is that when I run ethereal on the Windows server behind the firewall, I see 0 GRE packets and 0 1723 packets. So that makes me think it's the firewall. Is there a problem with my natd.conf, or do I need a firewall rule? Or is it because of the funky combination of XP PPTP clients, FreeBSD PPTP passthrough and NT PPTP severs? Or is it something more serious like needing to recompile the kernel? Any and all help will be greatly appreciated. Regards, Robert Martin robert.martin@shunda.com -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>; iQA/AwUBPjAuypIrR5N01aZzEQIzdACgwPvkkHnJDiisoBHMAi0Q/u8UZTIAn1PM IfKspASa+MV66CfwWZMjvc+Y =ncAB -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1429470107.20030123110551>