From owner-freebsd-questions Mon Jul 31 23:24:21 2000 Delivered-To: freebsd-questions@freebsd.org Received: from atlas.cair.du.edu (atlas.cair.du.edu [130.253.2.202]) by hub.freebsd.org (Postfix) with ESMTP id 5982237BCB3 for ; Mon, 31 Jul 2000 23:24:15 -0700 (PDT) (envelope-from ivanfetch@technologist.com) Received: from CONVERSION-DAEMON by denver.du.edu (PMDF V5.2-32 #39294) id <01JSFPF6QLTC8WYXRG@denver.du.edu> for questions@freebsd.org; Tue, 1 Aug 2000 00:13:21 MDT Received: from oak.ivanfetch.tzo.com ([130.253.204.170]) by denver.du.edu (PMDF V5.2-32 #39294) with ESMTP id <01JSFPF4LDR08WZ051@denver.du.edu>; Tue, 01 Aug 2000 00:13:20 -0600 (MDT) Date: Tue, 01 Aug 2000 00:27:36 -0600 (MDT) From: Ivan Fetch Subject: Re: [pptp-server] FreeBSD, Samba, PoPToP Connection Problems (internally and externally) In-reply-to: <3986252D.13100.DC51BC@localhost> X-Sender: ifetch@oak.ivanfetch.tzo.com To: Charles Peters - Tech Support Cc: questions@freebsd.org, pptp-server@lists.schulte.org Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello, Have you ever tried connecting to your external interface via a windows machine which is not going through a firewall, but instead is directly connected to the Internet? This could help to narrow down your problem. If you are using natd on the other FreeBSD gateways (the ones you are trying to connect to your VPn machine through) you need to specify something like this to natd. I have my natd_flags set to "-f /etc/natd.conf" - This file contains: unregistered_only yes pptpalias 192.168.0.7 The address 192.168.0.7 is the address of a machine I would like to be allowed to use VPN through that gateway. You can only do this with *one* machine. If you have a need to do this with more than one machine perhaps you could look at VPN'ing the two gateways together . Hopefully some of this will help, if not please let me know and I will see what else I can do. Ivan Fetch. On Tue, 1 Aug 2000, Charles Peters - Tech Support wrote: > > Greetings: > > I have a FreeBSD 4.0 server running Samba 2.0.7, and PoPToP- > 1.0.0. I have 2 network interface cards in this machine, one with > an internal ip address (192.168.0.4) and the other with an external > ip address (24.4.xxx.xxx). This machine is connected to the > internet via a cable modem, and is also connected to a lan on > 192.168.0. > > My Windows 98 computer is also connected to the lan, with an ip > address of 192.168.0.7. When this machine attempts to establish > a vpn connection to the internal interface (192.168.0.4), the > connection is allowed, but when I try and connect to the external > network card from the win 98 box, I get the following error: > > Error 629: You have been disconnected from the computer > that you dialed. Double click the connection to try again. > > I also get the same error from computers accross the internet > attempting to connect to the external adapter. These other > computers are also on lans, but have internet access via a cable > modem and a freebsd gateway running nat and ipfw. Computers > connected to the internet via real connections (no nat) also get the > same error message. > > My first concern is where these connection rejection messages > appear, they don't show up in /var/log/messages or > /var/log/ppp.conf. > > Secondly, how do I fix the problem. As far as I can tell, the vpn is > working properly inside the lan, the problem is in connecting from > outside the lan. > > It should be noted that I am attempting to connect thru a freebsd > gateway running ipfw and nat. The firewall type is OPEN. > > Any help would be appreciated, as I have spent a considerable > amount of time and effort on this project, and am no closer to a > solution after about 30 hours. Maybe it's time to cut my loses, and > find another method for establishing a vpn. Suggestions to this end > are also appreciated. > > Thanks in Advance!!! > > Charles > > support@tecpro.com > > > Charles Peters > mailto:support@tecpro.com > _______________________________________________ > pptp-server maillist - pptp-server@lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulteconsulting.com! > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message