----- Original Message -----
From: "Nik Clayton" <nik at ngo dot org dot uk>
To: "m0n0wall" <m0n0wall at lists dot m0n0 dot ch>
Sent: Thursday, September 15, 2005 5:19 PM
Subject: [m0n0wall] PPTP from OPT1 to LAN
> I'm trying to get m0n0wall to act as a PPTP server for my wireless
> clients, and I'm not getting anywhere.
> sis0 => LAN, 192.168.0.x (DHCP server enabled)
> sis1 => WAN, 192.168.1.x
> sis2 => OPT1, 192.168.2.x (DHCP server enabled)
> I have an 802.11b bridge plugged directly in to OPT1. Wireless clients
> can connect, and are handed out 192.168.2.x addresses by the DHCP server.
> VPN: PPTP
> [*] Enable PPTP server
> Server address: 192.168.2.1
> Remote address range: 192.168.2.240 / 28
Please excuse the massive trimming, but I think I have the basics.
From this your are trying to tunnel into the subnet you are already
in. You want a server address in the 192.168.0.239 with a
192.168.0.240/28 range. Then set a firewall rulset only allowing the
opt1 subnet to access 192.168.2.1 with PPTP and no WAN access. Then a
ruleset allowing PPTP WAN access.