/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
On Mon, 26 Mar 2001, Darren Kuik wrote:
> appropriate tools (ipmasqadm and ipfwd). It seems like ipfwd
> works and forwards the GRE packets to the NT server but it appears
> that the tcp packets never reach it on port 1723.
How are you testing the GRE? If the 1723/tcp traffic never makes it
across the firewall inbound, then the control connection should never
be established and the tunnel shouldn't be started.
> I did a port scan on it and found that port 1723 is in a closed
> state. Does this mean that pptp masq is not enabled.
No, that may not indicate anything.
> I compiled the required options into the kernel, but not as
> modules. Is it perhaps necessary to do them as modules and then
> load them using modprobe or insmod or whatever command it is?
Modules are not required, but if you do choose to compile modular,
then you must modprobe ip_masq_pptp or it won't work.
Try running tcpdump on you inner interface and attempt a connection.
Do you see any 1723/tcp traffic at all?
--
John Hardin KA7OHZ ICQ#15735746 http://www.wolfenet.com/~jhardin/
[EMAIL PROTECTED] pgpk -a finger://gonzo.wolfenet.com/jhardin
768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Failure to plan ahead on someone else's part does not constitute an
emergency on my part.
- David W. Barts in a.s.r
<[EMAIL PROTECTED]>
-----------------------------------------------------------------------
4 days until Daylight Savings Time begins
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.