Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 31 Oct 2000 14:18:52 -0700 (MST)
From:      "Mark J. Sommer" <msommer@argotsoft.com>
To:        peter@sysadmin-inc.com
Cc:        freebsd-net@freebsd.org
Subject:   Re: getting mpd-netgraph pptp to work throug ipfw firewall with natd
Message-ID:  <200010312118.OAA03064@argotsoft.com>
In-Reply-To: <000001c0437b$e1a68940$47010a0a@fire.sysadmininc.com> from Peter Brezny at "Oct 31, 2000 03:48:09 pm"

next in thread | previous in thread | raw e-mail | index | archive | help
Here's the lines I have for PPTP in rc.firewall:

    # Allow connections on pptp.
    $fwcmd add pass tcp from any 1723 to any 1024-65535 out xmit ${oif}
    $fwcmd add pass tcp from any 1024-65535 to any 1723 in recv ${oif}
    $fwcmd add pass 47 from any to any out xmit ${oif}
    $fwcmd add pass 47 from any to any in recv ${oif}

oif=outside interface

[Charset iso-8859-1 unsupported, filtering to ASCII...]
> A while back someone asked how to get this working and Archie replied...
> ===
> Should work fine.. just make sure you allow TCP port 1723 and
> IP proto #47 to reach mpd.
> 
> -Archie
> ===
> could anyone elaborate on this, specifically the ip proto#47 part and/or
> share a couple example ipfw rules?
> 
> TIA
> 
> Peter Brezny
> SysAdmin Services, Inc.
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-net" in the body of the message
> 


~Mark
--------------------------------------------------------------------------------
Mark J. Sommer      ARGOT Software Corporation,
P.O. Box 92020,     Albuquerque, New Mexico       87199-2020
FAX: 505-771-0274   PHONE: 505-867-6750           E-MAIL: msommer@argotsoft.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010312118.OAA03064>