this appears to be the tecnical reason: "Q. I cannot connect from more than one computer at the same time.
A. PPTP uses protocol GRE (47) for it's tunnel. When two clients behind a single NAT firewall connect to the same PPTP server, their source IP address will be rewritten by their firewall. In this case, the GRE sockets in two pptpctrl processes will be reading GRE packets from both clients. The only way to distinguish between those two clients is to filter them by destination call ID number found in the GRE header. In order for the client NAT firewall to correctly rewrite the PPTP server's replies, please check Philip Craig's netfilter pptp helper module available from the Netfilter CVS server: cvs -d :pserver:[EMAIL PROTECTED]:/cvspublic login When it asks you for a password type `cvs' cvs -d :pserver:[EMAIL PROTECTED]:/cvspublic co netfilter-extensions/helpers/pptp It will be integrated in KernelMod, but until then, you'll have to build it yourself. " from http://poptop.sourceforge.net/dox/qna.html do you have alternatives like: 1. using a linux firewall instead of a dumb nat router/modem? 2. use a better vpn like ipsec? On Wed, 24 Sep 2003 12:06:47 +1200 Bryce Stenberg <[EMAIL PROTECTED]> wrote: > Hi again, > > >So is each workstation making a separate PPTP connection to the router? > > No, the pptp tunnel is from the client's PC through to the server on the > internet, the router has to do network address (and port?) translation. > > >Or are they making a PPTP connection to the remote VPN server on the net? > > > Yes. > > >If its the second choice then any DSL router should do the job. > Not so... can only establish one VPN session at a time to the same server. > (Dynalink and D-link expressly say their ADSL routers can't handle more than > one connection to the same VPN server at the same time - don't quite know > why they are so limited). > > > Thanks, > Bryce Stenberg. > > > -----Original Message----- > From: CF [mailto:[EMAIL PROTECTED] > Sent: Wednesday, 24 September 2003 11:08 a.m. > To: Linux Users Group > Subject: Re: OT -ADSL router capable of multiple VPN connections to same > serve r? > > > On Wed, 2003-09-24 at 10:13, Bryce Stenberg wrote: > > This is quite off topic but as a number of people reading this list seem > to > > have wide experience I thought I'd give it go.... > > Always worth a try. > > > I need to find a multiport ADSL router (for connecting to phone line) that > > has the ability to allow multiple simultaneous VPN sessions (using PPTP) > > through to the same VPN server on the internet. > > There use to be a model from Nokia (the M1122) that sold for around $500 > to > > $600 and did this but that is no longer available in New Zealand. > > I have tried various Dynalink and D-Link models but they are limited to > only > > one session connecting to the same internet VPN server. > > So is each workstation making a separate PPTP connection to the router? > Or are they making a PPTP connection to the remote VPN server on the > net? If its the second choice then any DSL router should do the job. > > > I need multiport model as this is for tiny networks of typically two to > four > > computers (each computer needs to be able to establish their own VPN > session > > to the server out on the internet). > > > Or, does anyone know what telecom did with all the Nokia M1122 routers > that > > they use to rent to people in the early Jetstream(?) days, and then took > > them back as people purchased their own routers? (maybe their is a > warehouse > > somewhere full of them?). > > They appear to have dissappeared. Try www.graysonline.co.nz who > sometimes have M1122 listed. > > > DISCLAIMER: http://www.hrnz.co.nz/eDisclaimer.htm > -- Nick Rout <[EMAIL PROTECTED]>
