[ previous ] [ next ] [ threads ]
 
 From:  Aaron Clasby <aaron dot clasby at cox dot net>
 To:  Ryan Hoenle <ryan at hoenle dot org>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Strange PPTP Behavior?
 Date:  Wed, 01 Mar 2006 00:25:48 -0600 
Wouldn't this be related to NAT'ing? We see the internal IPs from those 
that we don't NAT between, but those that we NAT I only see their peer 
address.f  I would check the NAT'ing of the traffic.

Aaron


Ryan Hoenle wrote:
> Jeff,
>
> If the user is running an MS PPTP client that's actually "normal" 
> behavior.  I see blocked packets from the public ip of my remote users 
> on my watchguard fireboxes all the time as well.  Why it occurs (other 
> than a poor PPTP client) I do not know.
>
> -Ryan
>
> Jeff Scott wrote:
>> Hi all,
>>
>> I have a v1.21 install using PPTP VPN.  I have a rule that allows all =
>> traffic from the VPN.  I have noticed (via my router logs) that one of =
>> our users connections is exhibiting odd behavior.  I am seeing traffic =
>> from his public IP address coming through the VPN.  I only caught this =
>> because he was trying to connect to the Internet (through the VPN) and =
>> our Egress filter on the router caught it.
>>
>> Can anyone explain why his traffic would have a source address of his =
>> pubic IP instead of his VPN IP?
>>
>> Thanks,
>>
>> Jeff
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>