For what it is worth, I looked in the archives for a problem we are
having, and I noticed one of this tital from Daniel Rapp on 5th May.
Like daniel, we are trying to simply sent PPTP traffic off to a Microsoft
Windows 2000 VPN server.
Like Daniel, I am upgrading to 3.3 and tried to use something that worked
in 3.1. A difference is that instead of RDR'ing off the main IP, we are
BI-NATing the IP of the machine through to which we are trying to send the
PPTP packets.
Previously, we had
net.inet.ip.forwarding=1
net.inet.gre.allow=1
in /etc/sysctl.conf, and then in ( what was at that stage a NAT file and a
FILTER file ), where tun0 is our external interface
# Expose Microsoft W2K box ( @ intMSIP) to the world as a real IP
binat on tun0 from $intMSIP to any -> $extMSIP
# allow PPTP through
pass in on tun0 proto tcp from any to $intMSIP port 1723
pass in on tun0 proto gre from any to $intMSIP
Well, ours doesn't work either any more under 3.3.
I cannot see any followup. Did Daniel Rapp's problem ever get solved?
Whatever this problem is, it appears to be similar to the Apr 21st problem
of Richard Gutery. I noticed that Richard did a keep state on his rules.
Mind you, mine worked on 3.1 whereas Richard was coming off 2.9. I can't
see any followup on that either.
Thanks - Damian
Pacific Engineering Systems International, 22/8 Campbell St, Artarmon NSW 2064
Ph:+61-2-99063377 .. Fx:+61-2-99063468 | unsolicited email not wanted here !
Views and opinions here are mine and not those of any past or present employer
