[ previous ] [ next ] [ threads ]
 
 From:  Drago <dragotr at gmail dot com>
 To:  Jeroen <j dot geusebroek at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] m0n0wall 1.2 PPTP automagicly opens 1723 port?
 Date:  Fri, 18 Nov 2005 12:20:16 -0500
this has been discussed already. you can add deny rule on the external
interface to prevent access to port 1723.
Drago

On 11/18/05, Jeroen <j dot geusebroek at gmail dot com> wrote:
>
> Hi there,
>
> At work we have a m0n0wall 1.2final running as an PPTP server.
>
> We want to add an extra layer of security by limiting port 1723 access to
> only a selected range of ip addresses. However as it turns out, port 1723
> is already completely open on the WAN interface and hence it is impossible
> to restrict PPTP access by ip address.
>
> IMHO this is not recommended behaviour. I recall that it used to be
> necessary
> to explicitly open the 1723 port for it to work.
>
> --
> Jeroen
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>