RE: PPTP Proxy (What the heck is it supposed to do?)
This is a discussion on RE: PPTP Proxy (What the heck is it supposed to do?) within the IPFilter forums, part of the System Security and Security Related category; > -----Original Message----- > From: owner-ipfilter@coombs.anu.edu.au > [mailto:owner-ipfilter@coombs.anu.edu.au] On ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
07-08-2004
|
|||
|
|||
RE: PPTP Proxy (What the heck is it supposed to do?)
> -----Original Message-----
> From: owner-ipfilter@coombs.anu.edu.au > [mailto:owner-ipfilter@coombs.anu.edu.au] On Behalf Of Shepherd > Sent: Tuesday, July 06, 2004 11:50 PM > To: ipfilter@coombs.anu.edu.au > Subject: Re: PPTP Proxy (What the heck is it supposed to do?) > > Have you got an answer? I did, but I still don't quite understand... I think that the PPTP proxy is mainly used for traffic on the internal LAN that needs to make an outbound PPTP connection to a PPTP server. This proxy lets you enable that outbound traffic without having to do a pass out quick all on (externalif). Can someone correct me if I'm wrong? Also, I never received a response about GRE header filtering to enable multiple PPTP connections from the same NAT'd address. Is this in IPFilter 4.X? Thanks, Adam > > ----- Original Message ----- > From: "Adam Lofstedt" <adaml@visimation.com> > To: <ipfilter@coombs.anu.edu.au> > Sent: Friday, May 14, 2004 1:08 AM > Subject: RE: PPTP Proxy (What the heck is it supposed to do?) > > > > Could anyone spend a moment and clarify IPF and PPTP for me? > > > > What does the PPTP proxy do exactly? > > > > My network has a windows PPTP server behind a FreeBSD NAT > firewall. I am > > passing in 1723 TCP and port 0 GRE to the internal VPN > server. My clients > > outside the firewall are able to VPN to the server. In > this situation, do I > > need the PPTP proxy? > > > > I am asking because I have a problem where only one PPTP > session can be > > established to the VPN server when the external client is > behind a NAT > > router/firewall. Meaning, if client A is behind a NAT > router, and tries to > > VPN to my server, only one machine on client A's network > can access the VPN > > server at a time. This is similar to this situation covered in: > > > > http://www.phildev.net/ipf/IPFvpn.html > > > > >From reading this list, there was supposed to be a patch > that enabled > > IPFilter to use a GRE header number to enable multiple > sessions from the > > same NAT'd IP address. Is this what the PPTP proxy is for? > Was this patch > > ever implemented in IPF 4? > > > > Thanks a lot, > > > > Adam > > > > > -----Original Message----- > > > From: Adam Lofstedt [mailto:adaml@visimation.com] > > > Sent: Tuesday, May 11, 2004 11:02 AM > > > To: 'Darren Reed'; 'Matthew K. Lee' > > > Cc: 'ipfilter@coombs.anu.edu.au' > > > Subject: RE: PPTP Proxy > > > > > > Nope. 1723. > > > > > > Adam > > > > > > > -----Original Message----- > > > > From: owner-ipfilter@coombs.anu.edu.au > > > > [mailto:owner-ipfilter@coombs.anu.edu.au] On Behalf Of > Darren Reed > > > > Sent: Sunday, May 09, 2004 8:35 AM > > > > To: Matthew K. Lee > > > > Cc: ipfilter@coombs.anu.edu.au > > > > Subject: Re: PPTP Proxy > > > > > > > > In some email I received from Matthew K. Lee, sie wrote: > > > > > Hello all, > > > > > > > > > > What is the correct syntax to proxy pptp? > > > > > > > > I think you'll find this is correct: > > > > > > > > map foo0 0/0 -> 0/32 proxy port 1732 pptp/tcp > > > > > > > > Darren > > > > > > > > > > > > > > > 
|
Linear Mode
