Results 1 to 4 of 4

Thread: PPTP pass, Smoothwall 2.0

  1. #1
    Join Date
    Jun 2003
    Posts
    573
    Rep Power
    0

    Default PPTP pass, Smoothwall 2.0

    I am trying to config my smooth wall to allow PPTP to pass to my Windows 2003 VPN server at home. My config is as follows.

    internet----------ADSL Modem-------------Smoothie----------2K3VPN server
    10.0.0.0 172.16.64.0

    Smoothie green ip = 172.16.64.12
    2K3VPN = 172.16.64.34


    I edited my rc.firewall.up and restarted my firewall script as directed by http://martybugs.net/smoothwall/vpn.cgi.

    vpnserver="xxx.xx.xxx.xxx"
    /sbin/iptables -N pptp
    /sbin/iptables -A pptp -p tcp --destination-port 1723 --dst $vpnserver -j ACCEPT
    /sbin/iptables -A pptp -p 47 --dst $vpnserver -j ACCEPT
    /sbin/iptables -I FORWARD -j pptp
    /sbin/iptables -t nat -N pptp
    /sbin/iptables -t nat -A pptp -i $RED_DEV -p tcp --dport 1723 -j DNAT --to $vpnserver:1723
    /sbin/iptables -t nat -A pptp -i $RED_DEV -p 47 -j DNAT --to $vpnserver
    /sbin/iptables -t nat -A PREROUTING -j pptp
    [/QUOTE]
    vpnserver=my vpnserver ipaddress.

    I have a unsecured wireless access point on my 10.0.0.0 network and to connect to my LAN I want to go via my 2K3 vpn server.

    I've setup my vpn conx in xp. I am unable to connect. I can connect without the firewall. I checked the firewall log. Does not seem to be blocking port 1723 and 49. Any ideas?

  2. #2
    Join Date
    Oct 2004
    Posts
    4,814
    Rep Power
    24

    Default

    shouldn't there be an option in Smootwall to allow PPTP pass through? Or was it a different firewall I saw that in.

  3. #3
    Join Date
    Aug 2002
    Posts
    1,257
    Rep Power
    0

    Default

    There is an Issue with Nat Traversal and Smoothwall VPN.
    I have tried to workaround problem by unbing IKE port on Speedtouch modem.
    This worked to a point, basically the problem was with the ST modem implementation of Nat, and port numbers Smothwall PPTP is looking for.
    I dont need to know everything, I just need to know where to find the answer...Einstein

    Omar O Thompson (CISA, CCSP, CCDA, CCNA, NCDS(CS1000), LPIC-1, Linux+)

  4. #4
    Join Date
    Aug 2002
    Posts
    1,257
    Rep Power
    0

    Default

    There is an Issue with Nat Traversal and Smoothwall VPN.
    I have tried to workaround problem by unbing IKE port on Speedtouch modem.
    This worked to a point, basically the problem was with the ST modem implementation of Nat, and port numbers Smothwall PPTP is looking for.
    I dont need to know everything, I just need to know where to find the answer...Einstein

    Omar O Thompson (CISA, CCSP, CCDA, CCNA, NCDS(CS1000), LPIC-1, Linux+)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •