Re: Firewall rules have no effect on PPTP

From:	Ugo Bellavance <ugob at camo dash route dot com>
To:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: Firewall rules have no effect on PPTP
Date:	Wed, 08 Jun 2005 09:38:30 -0400

Frostpaw wrote:
> Hello,
> 
> I am running m0n0wall version 1.2b8 on a PC-Engines Wrap 1E-2.  I have
> encountered a bug in the software that I believe was originally reported in
> this archived email:
> http://m0n0.ch/wall/list/?action=show_msg&actionargs[]=81&actionargs[]=80.  
> 
> The bug I am encountering is this:
> 
> I have PPTP enabled on m0n0wall, and I would like to configure IP-based access
> restriction to it.  Unfortunately, no matter what blocking firewall rules I
> apply to the WAN interface (blocking TCP 1723 for example), access to PPTP is
> allowed from all IP addresses.  It seems that there is a hidden “port 1723
> allow” rule somewhere in the firewall rules.
> 
> Perhaps what is needed is a feature to disable the implicit 1723 allow rule?

You would like to restrict what IP has acces to the pptp service?  That
is a good idea :).

> 
> Thanks for developing a great product.  m0n0wall is the best!
> 
> Best Regards,
> -Frostpaw