yes this is true, you can't make multiple VPN connections to the same host with this patch but it doesn't stop you from connecting to other hosts. Which is why I suggested to make a tunnel to connect networks together rather than client-server... If client security is needed then SSH tunnel through it..
thanks, George Vieira Systems Manager Citadel Computer Systems P/L http://www.citadelcomputer.com.au -----Original Message----- From: Aldo S. Lagana [mailto:[EMAIL PROTECTED]] Sent: Tuesday, 02 July 2002 4:06 AM To: 'Rowan Reid'; [EMAIL PROTECTED] Subject: RE: PPTP through iptables FW... Here is what I found on the Netfilter site: pptp-conntrack-nat Author: Harald Welte <[EMAIL PROTECTED]> Status: Beta This adds CONFIG_IP_NF_PPTP: Connection tracking and NAT support for PPTP. Note that this code currently has limitations - can only NAT connections from PNS to PAC - doesnt' support multiple calls within one session Here's the link: http://netfilter.samba.org/documentation/pomlist/pom-extra.html#pptp-con ntrack-nat > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]] On Behalf Of Rowan Reid > Sent: Monday, July 01, 2002 12:44 PM > To: 'Aldo S. Lagana'; [EMAIL PROTECTED] > Subject: RE: PPTP through iptables FW... > > > > > > Yes I have seen that method for some time now, but I have > > heard that it doesn't work very well? > > I have seen some discussions on this group about that > > conntrack module (I think it's a P-O-M module) and was hoping > > that it did the same thing as that VPN masquerade link you sent... > > That would be good if we could find a link. I am at the point > of reverting to a > 2.2.x Kernel and using IPCHAINS since it's proven you know. > But I would much Prefer to use 2.4.x > >
