On 1/10/2011 1:16 PM, Melissa Jenkins wrote:
>>> I've been working on migrating a PPTP server from FreeBSD 7.1 to FreeBSD
>>> 8.1. The server is configured using PopTop (from ports) and PPP
>>> (/usr/sbin) rather than MPD. (Before anybody tells me to use MPD we can't
>>> because it doesn't inject packets into the kernel in the same way and it's
>>> not possible to filter on them correctly)
>>
>> I use mpd a lot. Can you expand on the problem you have with it ? I am not
>> sure what you mean by cant filter on it.
>
> Packets sent over a VPN to mpd didn't enter PF at the same point as they do
> from PPP - i couldn't get RDR or BINAT to redirect on anything inbound over
> the VPN.
>
> I haven't tried MPD in almost two years so this may have changed.
When netgraph interfaces come and go, you might need to do a reload of
your rules, or dynamically add/delete them if your rule set specifically
references ng interfaces. If thats all it was, its easy enough to hook
into using something like
set iface up-script /usr/local/etc/mpd5/up.sh
mpd5.5 is worth checking out for other reasons. It can do a lot and is
well supported for pptp stuff.
---Mike
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[email protected]"
