On Mon, 10 Nov 2003, Nick Knight wrote: > Hello All, > > > > If you setup a firewall with a ppp connection to the Internet - this > comes in on ppp0, if you then run a pptp server how do the subsequent > connections come in (on what interface) and how do you control them with > shorewall? >
You use the same technique as is described at http://shorewall.net/PPTP.htm under "Configuring Shorewall". The 'net' interface is 'ppp0' rather than 'eth0' as shown in that documentation. If you don't bridge remote subnets and only have single pptp client hosts that you assign local addresses to then: zones: net Internet ... loc Local ... pptp PPTP PPTP Clients Interfaces: net ppp0 - ... - ppp+ - ... hosts (assume that your local network is 192.168.1.0/24): pptp ppp+:192.168.1.0.24 If you want to consider your pptp clients to be part of the 'loc' zone, don't define 'pptp' in the zones file and replace 'pptp' with 'loc' in the rest of the above. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] ------------------------------------------------------- This SF.Net email sponsored by: ApacheCon 2003, 16-19 November in Las Vegas. Learn firsthand the latest developments in Apache, PHP, Perl, XML, Java, MySQL, WebDAV, and more! http://www.apachecon.com/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
