[ previous ] [ next ] [ threads ]
 From:  Christiaens Joachim <jchristi at oce dot be>
 To:  "'Matthew Geddert'" <webmaster at mbseminary dot edu>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  RE: [m0n0wall] remote vpn clients
 Date:  Wed, 18 Feb 2004 13:27:51 +0100
> -----Original Message-----
> From: Matthew Geddert [mailto:webmaster at mbseminary dot edu]
> Sent: woensdag 18 februari 2004 9:37
> To: m0n0wall at lists dot m0n0 dot ch
> Subject: [m0n0wall] remote vpn clients
> Hello,
> I've followed the advice in this guide:
> http://m0n0.ch/wall/guides/pptpvpn.pdf
> And am not able to access pptp from a remote location (i.e. on 
> the WAN side of the firewall). I've done a port scan with nmap on 
> the WAN side and all ports are blocked and it in fact doesn't 
> even respond to a ping - which Iím guessing is the default 
> behavior. On the LAN side port 1723 (i.e. the pptp port) is open 
> and I was able to connect to pptp using the standard windows XP 
> built in client. I have the "pptp -> any rule" as described in 
> the pdf. Does anybody have any suggestions for allowing me to 
> remotely access pptp (i.e. through the WAN interface)?
> I have enabled all ports on the wan side with a wan rule of * * * 
> * * and that didn't do anything to allow access to pptp from the 
> WAN side.
> Or, if this is an egregious security error could somebody please 
> suggest a better alternative for remote access to the LAN.
> Thanks for the help
> Matthew

Are you shure your ISP lets you access these lower ports from ousite?
Mine normally blocks all ports inbound beneath 5000 :(


Océ enables its customers to manage their documents efficiently and
effectively by offering innovative print and document management products
and services for professional environments.

This e-mail message and any attachment are intended for the sole use of the
recipient(s) named above and may contain information which is confidential
and/or protected by intellectual property rights.
Any use of the information contained herein (including, but not limited to,
total or partial reproduction, communication or distribution in any form) by
other persons than the designated recipient(s) is prohibited.

If you have received this e-mail in error, please notify the sender either
by telephone (0032-2-729.48.11) or by e-mail and delete the material from
any computer.
Oce-Belgium/Oce-Interservices is nor responsible for the correct and
complete transfer of the contents of the sent e-mail, neither for the
receipt on due time.  This e-mail message does not bring about a contractual
obligation for Oce-Belgium/Oce-Interservices.

Thank you for your cooperation.

For further information about Oce-Belgium/Oce-Interservices please see our
website at www.oce.be