Hello On Thu, Apr 14, 2005 at 07:03:50PM +0200, Robert Kloibhofer wrote: > Hello > > > Well I'm trying to scetch how I think it is configured. > > You have a ethernet connection to your modem: eth0 > Right > > You have a ppp connection to internet (ppp0) that is connected through eth0 > Right > > You have an ethernet connection to your intranet. > Right > > You have a wlan connection to your wlan. > Right > > You also have a pptp tunnel over ppp (ppp1) that is connected to your ppp > > connection (ppp0) that is connected to your eth0. > there is only one ppp-connection (ppp0). that is tunneld over eth0 to > the internet, as far as i understood. ?? You use pptp to access internet?
> the pptp-server (10.0.0.138) resides in the modem (which is in fact an > adsl-router and connects over phone-line to the provider). Are you sure you do not want to use pppoe instead of pptp? pppoe is the protocol to use for adsl modems. At least that is what I'm using with my adsl router. > > There are however a couple of things that I do not understand. > > * Why do you have a gateway to eth0? > otherwise the tunnel breaks. there would be no route to 10.0.0.138. > > * Why don't you allow incoming packets from ppp0. I actually > > think that pptp can require that. > Sorry, I think i said it wrong. Of course, packages over open > ip-connections and requested packages are allowed to come in. Otherwise > i could not use the internet. > I don't allow packages, that request connections or echos etc. That still may be a problem as the tunneling protocol is not based on tcp or udp. tcp, udp, icmp and gre (the tunneling protocol used by pptp) are all protocols that are on top of ip. You normally give firewall rules for tcp, udp and icmp. But some rules can affect the gre protocol as well. > > I'm not sure if I can give you more help than this. Maybe the > > people upstream can help you more. This may be a problem on a > > too low level for me. > I'm going to do that. thanks for now :-) Regards, // Ola > Regards, > > Robert > > > -- --------------------- Ola Lundqvist --------------------------- / [EMAIL PROTECTED] Annebergsslingan 37 \ | [EMAIL PROTECTED] 654 65 KARLSTAD | | +46 (0)54-10 14 30 +46 (0)70-332 1551 | | http://www.opal.dhs.org UIN/icq: 4912500 | \ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 / --------------------------------------------------------------- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
