Hi, Ole!Today we are testing this patch by following schemes: 1st scheme: Machine A (inside VPP with 1:1 static mapping) running PPTP _server_.Machine B (outside VPP with 1:1 iptables static mapping) running PPTP client. This scheme works well.
2st scheme:Machine A (inside VPP with 1:1 static mapping) running PPTP _client_.Machine B (outside VPP with public ip) as hardware PPTP server. This scheme works well. But only one session allowed. If we are create second connection from Machine A to Machine C (outside VPP with public ip) this will not work.OFC this is not required. 3st scheme:Machine A (inside VPP with 1:1 static mapping) running PPTP _server_.Machine B (inside VPP with 1:1 static mapping) running PPTP _client_.Maching B cannot connect to Machine A. This may cover hairpin nat issue. OFC this machines can doing connection via local addressing and it will be work. BTW, we are not testing yet technology when we SNAT two pptp clients in iptables mechanism (and those clients snatt (-ing) with one public address). Thanks! -- Yours sincerely, Denis Lotarev On Monday, June 19, 2017, 6:48:36 PM GMT+5, Ole Troan <otr...@employees.org> wrote: Hi Denis, > Yeah, we are testing SNAT 1:1 static mapping without port forwarding. Only > local and external addressing in configuration for PPTP client/server. Matus threw himself around and just did: https://gerrit.fd.io/r/#/c/7187/ Which forwards (and NATs) unknown protocols, which previously wasn't done. Are you able to retry with 7187? Merged about 10s ago. ;-) Best regards, Ole > Thanks! > > > Отправлено из Yahoo Почты на iPhone > > Пользователь пятница, июня 16, 2017, 10:53 ПП написал otr...@employees.org: > > Hi Denis, > > > Today we are testing SNAT plugin and PPTP connection by public ip and this > > is not working. > > Both machines have a static mapping, we are testing pptp by snat hairpin. > > Even if one machine (in outside VPP netwrok) can trying to connect to > > machine in inside VPP network (with static mapping by public ip) - > > connection lost. > > To be sure, we are testing this connection by local ips and this works. > > Also, we are testing another two protocols - RTSP and L2TP and this works > > fine... > > And you do have a static mapping on SNAT as well? > https://wiki.fd.io/view/VPP/SNAT#1:1_NAT_example > > Cause if you used NAPT, then this wouldn't work, given that PPTP is GRE(-ish). > > Cheers, > > Ole
_______________________________________________ vpp-dev mailing list vpp-dev@lists.fd.io https://lists.fd.io/mailman/listinfo/vpp-dev
