[ previous ] [ next ] [ threads ]
 
 From:  "Nantel Mathieu" <mnantel at microserv dot ca>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  PPTP passthrough
 Date:  Tue, 3 May 2005 10:44:23 -0400
Good day,

Hopefully this has not been answered before (it does not figure on the FAQ afaik).

We have a cable connection which is hooked up to a Netgear wireless router. The Netgear has been
spontaneously crashing for the past month in quite a random manner, and thus we replaced it with a
Linux router box.

One of the main requirements of the router box is to be able to let outgoing PPTP connection pass
through (offer some kind of connection tracking for those).

I initially tried installing devil-linux (linux+iptables) which would let some users connect using
PPTP, once in a while, and deny others in a very erratic. It felt like you had to let the firewall
idle for 30 seconds between a PPTP disconnection and reconnection. And it just didn't work for some
of the users.

I then thought about trying an entirely different package (BSD). So we setup m0n0wall on the box,
which works beautifully BTW. However, I got the same sporadic PPTP connectivity. PPTP works
flawlessly with the Netgear box.

Iptables does seem to implementent PPTP connection tracking, however it appears to be still "beta"
at this time.

Has anyone got this to work with m0n0wall? A non-linux-guru is going to manage this device, and the
GUI is perfect for this so I would love keep it if it will work.

Mathieu Nantel

Systems Specialist - Networking & Security
-----------------------------
Microserv.ca
tel:(514) 636-6467 x395
Fax : (514) 636-9547
950 Chemin Herron
Dorval (Quebec)
H9S 1B3









Confidentiality Notice :

This email and any files transmitted with it are confidential and intended solely for the use of the
individual or entity to whom they are addressed. If you have received this email in error please
notify the system manager. This message contains confidential information and is intended only for
the individual named. If you are not the named addressee you should not disseminate, distribute or
copy this e-mail.