Date: Fri, 21 Dec 2001 13:15:13 -0500 From: "Blake Crosby" <dev@samurai.com> To: "Rene de Vries" <rene@canyon.xs4all.nl>, "Blake Crosby" <dev@samurai.com> Cc: <freebsd-isp@freebsd.org> Subject: RE: PPTP Behind NAT? Message-ID: <JAEEIJKIHAONENKPFCCPGEOBCBAA.dev@samurai.com> In-Reply-To: <052DACBA-F631-11D5-BF09-00039357FA7A@canyon.xs4all.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
Yeah, IPNAT is forwarding all types of packets. The problem seems to be an arp one, on the server. For some reason, I cannot get proxy-arping to work. I've also posted to freebsd-net about this , and haven't gotten any answer. Blake > -----Original Message----- > From: Rene de Vries [mailto:rene@canyon.xs4all.nl] > Sent: December 21, 2001 11:37 AM > To: Blake Crosby > Cc: freebsd-isp@freebsd.org > Subject: Re: PPTP Behind NAT? > > > Blake, > > What is the ruleset used for ipnat? > Did you remember to also add a line for non tcp/udp natting (pptp uses > GRE). > > Rene > > On Thursday, December 20, 2001, at 03:47 PM, Blake Crosby wrote: > > I'm having trouble getting tcp/ip working once I connect to a machine > > using > > PPTP. Here is my network setup. > > > > pptp server (freebsd 4.4 - using mpd-netgraph) > > | > > | > > Internet > > | > > | > > Gateway, running ipnat (freebsd 4.3) > > | > > | > > Windows XP Machine. > > > > I can connect fine, except I can't really do much from that point on. > > The > > server has the ip address 192.168.0.1 and the client has 192.168.0.2. > > When > > I try to ping the clients ip address from the server I get this: > > > > PING 192.168.0.2 (192.168.0.2): 56 data bytes > > ping: sendto: Permission denied > > ping: sendto: Permission denied > > > > according to ifconfig, the tunnel seems to be up: > > > > ng0: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> mtu 1500 > > inet 192.168.0.1 --> 192.168.0.2 netmask 0xffffffff > > > > my mpd.conf file looks like: > > > > pptp: > > new -i ng0 pptp pptp > > set iface disable on-demand > > set iface enable proxy-arp > > set iface idle 1800 > > set bundle disable multilink > > set link yes acfcomp protocomp > > set link no pap chap > > set link enable chap > > set link keep-alive 10 60 > > set ipcp yes vjcomp > > set ipcp ranges 192.168.0.1/32 192.168.0.2/30 > > set ipcp dns xxx.xxx.xxx.xxx <--- IP address of external > > interface > > (yes a dns server is listening) > > > > set bundle enable compression > > set ccp yes mppc > > set ccp yes mpp-e40 > > set ccp yes mpp-e128 > > set ccp yes mpp-stateless > > > > and mpd.links: > > > > pptp: > > set link type pptp > > set pptp self xxx.xxx.xxx.xxx <-- External IP address > > set pptp enable incoming > > set pptp disable originate > > > > any idea what could be wrong? Is this a nat problem? > > > > Blake > -- > Rene de Vries <rene@tunix.nl> > TUNIX Open System Consultants BV > Wijchenseweg 111, 6538 SW Nijmegen, the Netherlands > phone: +31-(0)24-3455000 / fax: +31-(0)24-3455001 > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?JAEEIJKIHAONENKPFCCPGEOBCBAA.dev>