This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Lan client pptp through astaro version 7.*

Hello forum,

Short question about how to allow a pptp connection from a windows client inside the lan through the astaro box to a remote host.

Is it enough to just make a rule like this:
define the client as host with static ip, define the destination as host,
packet filter rule > from client host, service pptp to destination host allow.

Or is it necessary to setup a dnat rule?

Thanks in advance - Best,
Zerb.

This thread was automatically locked due to age.

Parents

0 BAlfson over 14 years ago

Because it is not very secure, we never recommend PPTP, but I was curious about how to overcome NATting issues as NAT-T does for L2TP over IPsec.

VPN servers and firewall configuration: Virtual Private Network (VPN) implies that you need an additional rule: '{client} -> GRE -> {remote PPTP server} : Allow'. I assume others already use the PPTP server on the other end, so that they have configured their firewall as recommended by the article.

Please let us know if this works or if you also needed to open GRE and/or PPTP in the other direction.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 14 years ago

Because it is not very secure, we never recommend PPTP, but I was curious about how to overcome NATting issues as NAT-T does for L2TP over IPsec.

VPN servers and firewall configuration: Virtual Private Network (VPN) implies that you need an additional rule: '{client} -> GRE -> {remote PPTP server} : Allow'. I assume others already use the PPTP server on the other end, so that they have configured their firewall as recommended by the article.

Please let us know if this works or if you also needed to open GRE and/or PPTP in the other direction.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data