Horst Knobloch wrote:
> Carl Farrington <carl@000compsup000.net.invalid> wrote:
>
> [only one of multiple pptp connections work]
>>
>> Is there something I need to specify to iptables get gre/pptp
>> connections masqueraded properly?
>>
>> here's my very basic NAT script at the moment:
>>
>> /sbin/iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
>> echo 1 > /proc/sys/net/ipv4/ip_forward
>
> Have a look to Linux VPN Masquerade document
> http://www.impsec.org/linux/masquerade/ip_masq_vpn.html
>
> HTH
>
> Ciao, Horst

It does help, thank you. I haven't tried it yet, but I am about to.

It surprises me that a third-party patch would be needed to achieve
sucessful PPTP masquerading. Do you know if there are plans to officially
incorporate this into the kernel? I realise PPTP is a Microsoft (and
cisco??) invention so maybe there lies the reason for lack of effort, but it
is quite widely used all the same.

ciao