[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] Re: PPTP Server behind NAT/DMZ






Hi,

try a "passthrough" ...

allow incoming / outgoing pptp ( tcp, 1723 ) and gre ( ip type 47 ) from and to the network you're connected.

cu
alex

Sven-Haegar Koch <haegar@xxxxxxxxx> schrieb am 14.01.2004 18:14:40:

> On Thu, 15 Jan 2004, Marco Lum wrote:
>
> > I have a problem which setup a PPTP Server behind NAT DMZ, Network like:
> > www.xxxx.yyy.zzz (Fixed IP) --NAT --192.168.1.254(NAT Router)-----DMZ
> > 192.168.1.1(SuSE)
> >
> > I Found most of normal service work well like apache, FTP etc, But PoPTP
> > can not connect link success, Seems no respone after auth username &
> > Password.
>
> You need Support-Modules for PPTP through NAT.
>
> These exist, but are not part of the normal linux kernel, so you will
> have to compile your own kernel. You can get them from the
> netfilter/iptables patch-o-matic from netfilter.org, they are part of the
> "extra" section.
>
> Docs how to apply these patches should be available on netfilter.org too.
>
> c'ya
> sven
>
> --
>
> The Internet treats censorship as a routing problem, and routes around it.
> (John Gilmore on http://www.cygnus.com/~gnu/)
>
> --
> Check the headers for your unsubscription address
> For additional commands, e-mail: suse-security-help@xxxxxxxx
> Security-related bug reports go to security@xxxxxxx, not here
>


--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here