Date: Fri, 21 Dec 2001 17:37:27 +0100 From: Rene de Vries <rene@canyon.xs4all.nl> To: "Blake Crosby" <dev@samurai.com> Cc: freebsd-isp@freebsd.org Subject: Re: PPTP Behind NAT? Message-ID: <052DACBA-F631-11D5-BF09-00039357FA7A@canyon.xs4all.nl> In-Reply-To: <JAEEIJKIHAONENKPFCCPGENLCBAA.dev@samurai.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Blake, What is the ruleset used for ipnat? Did you remember to also add a line for non tcp/udp natting (pptp uses GRE). Rene On Thursday, December 20, 2001, at 03:47 PM, Blake Crosby wrote: > I'm having trouble getting tcp/ip working once I connect to a machine > using > PPTP. Here is my network setup. > > pptp server (freebsd 4.4 - using mpd-netgraph) > | > | > Internet > | > | > Gateway, running ipnat (freebsd 4.3) > | > | > Windows XP Machine. > > I can connect fine, except I can't really do much from that point on. > The > server has the ip address 192.168.0.1 and the client has 192.168.0.2. > When > I try to ping the clients ip address from the server I get this: > > PING 192.168.0.2 (192.168.0.2): 56 data bytes > ping: sendto: Permission denied > ping: sendto: Permission denied > > according to ifconfig, the tunnel seems to be up: > > ng0: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> mtu 1500 > inet 192.168.0.1 --> 192.168.0.2 netmask 0xffffffff > > my mpd.conf file looks like: > > pptp: > new -i ng0 pptp pptp > set iface disable on-demand > set iface enable proxy-arp > set iface idle 1800 > set bundle disable multilink > set link yes acfcomp protocomp > set link no pap chap > set link enable chap > set link keep-alive 10 60 > set ipcp yes vjcomp > set ipcp ranges 192.168.0.1/32 192.168.0.2/30 > set ipcp dns xxx.xxx.xxx.xxx <--- IP address of external > interface > (yes a dns server is listening) > > set bundle enable compression > set ccp yes mppc > set ccp yes mpp-e40 > set ccp yes mpp-e128 > set ccp yes mpp-stateless > > and mpd.links: > > pptp: > set link type pptp > set pptp self xxx.xxx.xxx.xxx <-- External IP address > set pptp enable incoming > set pptp disable originate > > any idea what could be wrong? Is this a nat problem? > > Blake -- Rene de Vries <rene@tunix.nl> TUNIX Open System Consultants BV Wijchenseweg 111, 6538 SW Nijmegen, the Netherlands phone: +31-(0)24-3455000 / fax: +31-(0)24-3455001 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?052DACBA-F631-11D5-BF09-00039357FA7A>