I'm trying to connect from a windows box using the windows pptp vpn to
my server running freebsd. On my server I have ipf as a firewall. I
am connecting to mpd as a vpn which creates an ng0 interface
(netgraph). This part seems to work fine. I can ping the server over
the vpn. However, I can't seem to get any further than the server.
ipnat -l shows this:
List of active MAP/Redirect filters:
map ng0 192.168.1.0/24 -> 1.2.3.4/32 portmap tcp/udp 10000:20000
map ng0 192.168.1.0/24 -> 1.2.3.4/32
List of active sessions:
where 1.2.3.4 is an imaginary outside ip address directly on the
internet. The address of my box is window box on the far end of the
vpn is 192.168.1.50.
ifconfig shows this for the ng device:
ng0: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> mtu 1396
inet 192.168.1.1 --> 192.168.1.50 netmask 0xffffffff
I see via tcpdump that it is directly routing my 192.168.50.1 src
address packets out my ethernet intnerface on my server without nat.
I see them via tcpdump on a remote machine, so no wonder I'm not
getting anything back.
Can someone spot what I'm missing that ipnat isn't natting the src address?
Michael Grant
