Code:
(Internet) --- (a.b.149.70 ) - [astaro box] - (10.1.1.1)---|
--- (a.b.149.66 VPN_IP_INTERFACE) |
|
----------------
(10.1.1.17) |
[MY_VPN] [MY_LAN - rest of internal natted]
(ie 2 ips on external and 10.1.1.1 on internal)
The following NAT/SNAT rules are in place.
LAN_MASQ MY_LAN -> All / All MASQ__External None
VPN_Rule Any -> VPN_IP_Interface__ / Any None MY_VPN
I have also tried:
LAN_MASQ MY_LAN -> All / All MASQ__External None
GRE Rule Any -> VPN_IP_Interface__ / GRE None MY_VPN
PPTP Rule Any -> VPN_IP_Interface__ / PPTP None MY_VPN
(I have used both at the same time as well)
Now 10.1.1.17 is also hosting mail services and those work fine.
From viewing the Live Log's, I do not believe it to be a firewall issue ( I don't see drops for MY_VPN or VPN_IP_Interface) but
From (Client) Service To (Server) Action
Any Any Mail_IP_Interface__ Allow
MY_LAN Any Any Allow
Any GRE VPN_IP_Interface__ Allow
Any PPTP VPNl_IP_Interface__ Allow
I have Proxy ARP turned on and off on both interfaces with no luck.
Telnetting to 1723 from the outside net DOES give a connection. VPN does work from the Internal Network. Other services on that box (smtp) do work just fine.
Am I missing something? This looks like a textbook VPN setup from the Linux VPN Masquarading faq. I don't get why I cannot get the tunnel open. Any ideas that you have would be MUCH appreciated!
Thanks
Jt
This thread was automatically locked due to age.
