[ previous ] [ next ] [ threads ]
 
 From:  <leesharp at hal dash pc dot org>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] PPTP from OPT1 to LAN
 Date:  Fri, 16 Sep 2005 00:21:59 -0500
----- Original Message -----
From: "Nik Clayton" <nik at ngo dot org dot uk>
To: "m0n0wall" <m0n0wall at lists dot m0n0 dot ch>
Sent: Thursday, September 15, 2005 5:19 PM
Subject: [m0n0wall] PPTP from OPT1 to LAN
  
> I'm trying to get m0n0wall to act as a PPTP server for my wireless 
> clients, and I'm not getting anywhere.

> sis0 => LAN,  192.168.0.x (DHCP server enabled)
> sis1 => WAN,  192.168.1.x
> sis2 => OPT1, 192.168.2.x (DHCP server enabled)

> I have an 802.11b bridge plugged directly in to OPT1.  Wireless clients 
> can connect, and are handed out 192.168.2.x addresses by the DHCP server.

>    VPN: PPTP
> 
>    [*] Enable PPTP server
>    Server address: 192.168.2.1
>    Remote address range: 192.168.2.240 / 28

Please excuse the massive trimming, but I think I have the basics. 
 From this your are trying to tunnel into the subnet you are already 
in.  You want a server address in the 192.168.0.239 with a 
192.168.0.240/28 range.  Then set a firewall rulset only allowing the 
opt1 subnet to access 192.168.2.1 with PPTP and no WAN access.  Then a 
ruleset allowing PPTP WAN access.