Re: [LIH]Two or more PPTP from behind a Linux NAT/firewall

[Thaths]

On 4/29/05, Suresh Ramasubramanian <[EMAIL PROTECTED]> wrote:
> pptp will accept only one connection per IP
> so it doesnt exactly play too well with a nat setup

I also came across this:

"Currently, only one inside machine can have an open virtual circuit
to an outside machine X. If another inside machine connects to machine
X, the first inside machine will lose its connection because packets
will be intermixed. This problem exists because this protocol is not
port based. There are a couple things in the PPTP spec that might
allow IP masquerading to work more generically. There are callID and
peerCallID areas that could act as identifiers for sessions. The only
problem is that Windows NT sets both of them to 0, so nothing useful
can be done with them currently."[1]

The funny thing is when we use a hardware firewall things work well.
Which makes me think that the Linux folks have not fully reverse
engineered the PPTP protocol yet to figure out how to do this.

Thaths
[1] http://bmrc.berkeley.edu/people/chaffee/linux_pptp.html

-- 
   "Good things don't end in -eum; they end in -mania or -teria"
                                   -- Homer J. Simpson


-------------------------------------------------------
SF.Net email is sponsored by: Tell us your software development plans!
Take this survey and enter to win a one-year sub to SourceForge.net
Plus IDC's 2005 look-ahead and a copy of this survey
Click here to start!  http://www.idcswdc.com/cgi-bin/survey?id5hix
_______________________________________________
linux-india-help mailing list
linux-india-help@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/linux-india-help