Re: [Masq] pptp_masq doesn't work for me

Wed, 28 Mar 2001 20:29:22 -0800 

/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! 
/* ALSO: Don't quote this header. It makes you look lame :-) */


On Mon, 26 Mar 2001, Darren Kuik wrote:

> appropriate tools (ipmasqadm and ipfwd).  It seems like ipfwd
> works and forwards the GRE packets to the NT server but it appears
> that the tcp packets never reach it on port 1723.

How are you testing the GRE? If the 1723/tcp traffic never makes it
across the firewall inbound, then the control connection should never
be established and the tunnel shouldn't be started.

> I did a port scan on it and found that port 1723 is in a closed
> state.  Does this mean that pptp masq is not enabled.

No, that may not indicate anything.

> I compiled the required options into the kernel, but not as
> modules.  Is it perhaps necessary to do them as modules and then
> load them using modprobe or insmod or whatever command it is?

Modules are not required, but if you do choose to compile modular,
then you must modprobe ip_masq_pptp or it won't work.

Try running tcpdump on you inner interface and attempt a connection.
Do you see any 1723/tcp traffic at all?

--
 John Hardin KA7OHZ   ICQ#15735746   http://www.wolfenet.com/~jhardin/
 [EMAIL PROTECTED]      pgpk -a finger://gonzo.wolfenet.com/jhardin
  768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76 
 1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
  Failure to plan ahead on someone else's part does not constitute an
  emergency on my part.
                                  - David W. Barts in a.s.r
                                    <[EMAIL PROTECTED]>
-----------------------------------------------------------------------
   4 days until Daylight Savings Time begins

_______________________________________________
Masq maillist  -  [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ -- 
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]

PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.

Reply via email to