>> [lns default] > > ip range = 10.1.161.1 - 10.1.163.254 > local ip = 192.168.200.1
I'ts like this:
for wi-fi lan card ip address: 192.168.0.150 gw: 192.168.0.1
for vpn connec ip address 192.168.0.101 gw: 192.168.0.101
10.16.165.0/24 on eth0 is your protected network, right? Then why did you now change ip range and local ip?
ip range = 192.168.200.3-192.168.200.254 local ip = 192.168.200.1
Another thing: if eth1 is the wireless net, then I guess you should block L2TP on eth1, not eth0:
> iptables -A INPUT -i eth0 -p udp -m udp --dport 1701 -j DROP
Jacco -- Jacco de Leeuw mailto:[EMAIL PROTECTED] Sign in physics lab: http://www.jacco2.dds.nl "Do not look into laser Zaandam, the Netherlands with *remaining* eye".
