Date: Wed, 18 Jan 2006 18:01:17 +0300 From: Gleb Smirnoff <glebius@FreeBSD.org> To: Tiago Cruz <tiagocruz@b4br.net> Cc: "freebsd-net@FreeBSD.org" <freebsd-net@FreeBSD.org> Subject: Re: MPD and client behind firewall Message-ID: <20060118150117.GT83922@FreeBSD.org> In-Reply-To: <1137520320.15943.92.camel@localhost.localdomain> References: <1137520320.15943.92.camel@localhost.localdomain>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Jan 17, 2006 at 03:52:00PM -0200, Tiago Cruz wrote: T> I have a FreeBSD 6.0 running MPD server 3.18_3. T> The MPD server works very good when I has _direct_ connected by T> Internet. T> T> My problem is with one _client_ (Win XP) behind NAT from iptables. I T> have to do some in my PF? T> T> In this case, I've tried do this (in iptables from client): T> T> # Allow forwarding from inside to out and vice versa T> iptables -A FORWARD -i $INTINT -s $LOCALNETWORK -j ACCEPT T> iptables -A FORWARD -o $INTINT -d $LOCALNETWORK -j ACCEPT T> T> # Allow pptpd connections (port 1723) T> iptables -t nat -A PREROUTING -i $EXTINT -p TCP --sport $PUBLICPORTS T> --dport 1723 -j ACCEPT T> iptables -t nat -A OUTPUT -o $EXTINT -p 47 -j ACCEPT T> iptables -A OUTPUT -o $EXTINT -p 47 -j ACCEPT T> iptables -A INPUT -i $EXTINT -p 47 -j ACCEPT T> T> But still don't woking. Somebody can help me? Follow the mpd.log: Masquarading GRE protocol, which is used by PPTP as transport, isn't simple. Not all NATs can do this. If you are going to server a lot of clients connecting from random places in the world, then you will face this problem time to time. Can you check whether iptables support NATing PPTP? -- Totus tuus, Glebius. GLEBIUS-RIPN GLEB-RIPE
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060118150117.GT83922>