[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [suse-security] Re: PPTP Server behind NAT/DMZ
try a "passthrough" ...
allow incoming / outgoing pptp ( tcp, 1723 ) and gre ( ip type 47 ) from and to the network you're connected.
Sven-Haegar Koch <haegar@xxxxxxxxx> schrieb am 14.01.2004 18:14:40:
> On Thu, 15 Jan 2004, Marco Lum wrote:
> > I have a problem which setup a PPTP Server behind NAT DMZ, Network like:
> > www.xxxx.yyy.zzz (Fixed IP) --NAT --192.168.1.254(NAT Router)-----DMZ
> > 192.168.1.1(SuSE)
> > I Found most of normal service work well like apache, FTP etc, But PoPTP
> > can not connect link success, Seems no respone after auth username &
> > Password.
> You need Support-Modules for PPTP through NAT.
> These exist, but are not part of the normal linux kernel, so you will
> have to compile your own kernel. You can get them from the
> netfilter/iptables patch-o-matic from netfilter.org, they are part of the
> "extra" section.
> Docs how to apply these patches should be available on netfilter.org too.
> The Internet treats censorship as a routing problem, and routes around it.
> (John Gilmore on http://www.cygnus.com/~gnu/)
> Check the headers for your unsubscription address
> For additional commands, e-mail: suse-security-help@xxxxxxxx
> Security-related bug reports go to security@xxxxxxx, not here
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here