[ previous ] [ next ] [ threads ]
 From:  "Chris Buechler" <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] m0n0wall and clients behind it creating PPTP-Tunnels
 Date:  Wed, 15 Mar 2006 23:15:36 -0500
On 3/15/06, Peter Guhl <pgnews at siconline dot ch> wrote:
> The effects are very strange but not as desired. Sometimes one client
> can connect while the others can't. It seems to be possible to connect 2
> clients if one is using the DNS-Name and the other one the IP-Adress of
> the PPTP-Server.

You can't connect two clients behind one NAT device to the same PPTP
server, unless the NAT device has some application intelligence to
differentiate between the two connections.  GRE doesn't have a port
number like TCP and UDP that the device can use to differentiate. 
There are other ways to differentiate the GRE traffic between
connections on two LAN hosts, but m0n0wall doesn't support that at
this time.

> The m0n0wall has got a rule at the WAN-interface allowing GRE from
> anywhere to the LAN.

This isn't necessary.