From owner-freebsd-net Tue Jan 21 9:18:36 2003 Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8EC7237B401 for ; Tue, 21 Jan 2003 09:18:34 -0800 (PST) Received: from supergeer.shunda.com (h24-86-153-117.ed.shawcable.net [24.86.153.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id 29F1543F13 for ; Tue, 21 Jan 2003 09:18:33 -0800 (PST) (envelope-from robert.martin@shunda.com) Received: from 127.0.0.1 (oppy [172.16.60.100]) by supergeer.shunda.com (8.11.1/8.11.1) with ESMTP id h0LHIRA11623 for ; Tue, 21 Jan 2003 10:18:27 -0700 (MST) (envelope-from robert.martin@shunda.com) Date: Tue, 21 Jan 2003 10:18:22 -0700 From: Robert Martin X-Mailer: The Bat! (v1.60c) Reply-To: Robert Martin X-Priority: 3 (Normal) Message-ID: <092443616.20030121101822@shunda.com> To: freebsd-net@FreeBSD.org Subject: PPTP passthrough on FreeBSD 4.4 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org First of all, I hope that this isn't something obvious that I've missed. I've searched everything I can think of, but have come up empty so far. Maybe somebody here will be able to help. If this is the wrong mailing list, sorry, and please let me know which one I should post to. I am trying to get a FreeBSD ipfw firewall to pass Windows PPTP client traffic through to a Windows NT box behind the firewall. I have successfully used the pptpalias command in natd on a FreeBSD 3.4 box over the last couple of years to pass through PPTP traffic to both NT and 2000 servers. However I now have a client with a FreeBSD 4.4 box that wants to do the same thing, and unfortunately pptpalias has not been included in natd since 4.0. If I am correct, all I should need to do is put a redirect_proto line in natd.conf instead of the pptpalias line, like below: redirect_proto 47 192.168.0.51 redirect_port tcp 192.168.0.51:1723 1723 I think I have the redirect_proto line correct. But, I might not. I've tried it with GRE instead of 47, but that didn't work either. The thing that bothers me is that when I run ethereal on the Windows server behind the firewall, I see 0 GRE packets and 0 1723 packets. So that makes me think it's the firewall. Is there a problem with my natd.conf, or do I need a firewall rule? Or is it because of the funky combination of XP PPTP clients, FreeBSD PPTP passthrough and NT PPTP severs? Or is it something more serious like needing to recompile the kernel? Any and all help will be greatly appreciated. Regards, Robert Martin robert.martin@shunda.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message