Hi,
To publish an internal PPTP server:
rdr pass on $ext_if proto tcp from any to $ext_if port 1723 ->
$internal_server
rdr pass on $ext_if proto gre from any to any -> $internal_server
To allow an internal computer establish a PPTP tunnel to a server on the
Internet:
pass out on $ext_if proto gre from $ext_if to any keep state
pass in on $int_if proto tcp from $internal_client to any port 1723 keep
state
pass in on $int_if proto gre from $internal_client to any keep state
The PPTP needs GRE and 1723/tcp..
Rgds
Marcello
----- Original Message -----
From: "Juan Miscaro" <jmisc...@gmail.com>
To: "patrick keshishian" <pkesh...@gmail.com>
Cc: "openbsd-misc" <misc@openbsd.org>
Sent: Friday, May 29, 2009 7:08 PM
Subject: Re: PPTP vpn with OBSD gateway (outgoing)
2009/5/29 patrick keshishian <pkesh...@gmail.com>:
On Fri, May 29, 2009 at 2:08 PM, Juan Miscaro <jmisc...@gmail.com> wrote:
Hi, I'm trying to set up a PPTP tunnel for a Windows machine lying
behind my OBSD 4.0 internet gateway. B I can establish the tunnel but
I'm missing the last piece in the puzzle. B This is the routing of the
RFC 1918 addresses. B Locally I have 10.9.0.0/16 addresses and the
windows machine wants to connect to a web server on the remote side
that is using 192.168.0.0/16.
Just to make sure I am understanding you correctly, you have a Windows
machine in your network which is behind an OpenBSD firewall (pf). The
Windows machine establishes a PPTP VPN connection to the remote site.
If I understood this correctly...
What is the route table on the Windows box look like? I'm not a
windows person but I believe the command is 'route print' from a
DOS/CMD prompt. Does the route to the remote site exist/show up in the
output? Does 'ipconfig' show your local ip assigned to your Windows
machine by the VPN server?
Yeah, you understood my setup.
I will try the windows commands.
Thanks.
/jm
