Re: IPF and PPTP

Chuck Meo wrote:
> ...
> I have an issue with ipfilter 4 (bundled with Solaris 10) and pptpd on
> Debian. My objective is to establish a PPTP tunnel from a client on a
> windows PC inside my home LAN, via an IPF firewall, to the office
> firewall, which has pptpd. I am unable to figure out how to run PPTP
> through ipfilter, and a search of google, this mailing list and
> sunsolve hasn't turned up anything relevant to pptp in this direction,
> though a lot of stuff about going the other way to a pptp server
> behind ipf.
>
> Anyway, I can't get it to work.
>
> Versions:
>
> megalon# uname -a
> SunOS megalon 5.10 Generic_118833-24 sun4u sparc SUNW,Ultra-2
>
> megalon# ipf -V
> ipf: IP Filter: v4.0.3 (592)
> Kernel: IP Filter: v4.0.3 Running: yes

First thing you need to do is download and apply the latest patch for
IPFilter
to upgrade it to 4.1.9 (if i recall correctly) or find one of the
documents about
how to replace the Solaris IPFilter with the IPFilter from this website.

Next what you need to do is contrust some ipnat rules that use the PPTP
proxy:

If the PPTP server is outside your network, then you want to do
something like:

map adsl0 0/0 -> 0/32 proxy port 1723 pptp/tcp

If the PPTP server is inside your network and people outside it are
using it,
then you need something like:

rdr foo0 0/0 port 1723 -> 127.0.0.1 port 1723 proxy pptp

Darren