> I have a need to connect to a client with PPTP (I know it sucks, but > that is what they use). I have loaded the module ip_masq_pptp.o in the > modules config file, but is there more I need to do? I have searched, > but all I find is talk about how PPTP is not as good as IPSec, but I > would like to solve this problem.
If you're trying to simply masquerade a PPTP connection (ie if you directly connect your windows system to your internet connection and your VPN link works, and you want to be able to run the windows system and VPN link behind your firewall), you're on the right track. You need the ip_masq_pptp.o module loaded, which will do the dirty-work of masquerading the VPN link. You still, however, need to allow the PPTP packets through your firewall (only TCP/UDP/ICMP traffic is allowed by default). I believe this is protocol 47 (GRE), which you would allow into your Dachstein based firewall with the following: EXTERN_PROTO0="47 1.2.3.4/32" Where 1.2.3.4 is the IP of the remote VPN peer you're connecting to. If you're connecting to several VPN servers, you can either make an entry for each one (remember to increment the index number!), or use 0/0 for the IP range, which is the whole internet. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
