[Shorewall-users] Cannot connect to remote PPTP vpn

Sat, 31 Jan 2015 15:42:07 -0800 

Shorewall group,

I am having a hard time connecting to a remote PPTP from a LAN computer
and was hoping I could get some hints on what could be going wrong.

Here is what I know:

The remote VPN server is an Asus router. At time of writing it was
71.208.224.179.  It is setup for PPTP with 128 bit MPPE encryption.

I can connect on my android phone if I am on verizon's network, but I
cannot connect if I am on the LAN network.  Likewise I cannot connect on
my laptop on the LAN network.

I have run a tcpdump on the router while trying to connect to the VPN
from the LAN.  At a high level it seems that traffic is making it
through for the initial connection setup and there are also some further
PPP packets but it seems that the conversation just goes silent.

I have tried setting up shorewall in two different manners with the same
results:
-  Using AUTOHELPERS=Yes
-  Specifying HELPERS=amanda,ftp,irc,netbios-ns,pptp,sane,sip,snmp,tftp
and using the following rule in conntrack:

?if __PPTP_HELPER
CT:helper:pptp:PO -   -   tcp 1723
?endif

Any ideas?

Thanks much.
Andrew



             +-------------+                      
             | Asus Router |                      
             |  VPN PPTP   |  71.208.224.179      
             +-------------++                     
                            |                     
                            |            XXXXXXX  
       XXXXXXXXXXXXXXXX     |      XXXXXXX     X  
     XX               XXX   |     X            XX 
     X    Time Warner  X+---+---+XX  Verzion    X 
    XX      Cable     XX         X             XX 
    X                 X          XX            X  
    XX            XXXXX            XXXX       XX  
      XXX      XXX+---+              XXXX++XXXX   
         XXXXXXX      |                   |       
                      |                   |       
                      |                   |       
                      |                   |       
        76.187.111.93 |                   |       
                   +--+-------+           | Works!
                   |Shorewall |           |       
                   |  Router  |           |       
                   +---+------+           |       
       172.16.17.1/24  |                  |       
                       |                  |       
                  XXXXX+XX       +--------++      
 172.16.17.99    XX      X       | Android |      
+---------+     XX  LAN  X       +---------+      
| Laptop  +-----+X      XX       |                
+---------+      XXX    +--------+                
     Doesn't Work  XXXXXX   Doesn't Work

Attachment: shorewall.dump.gz
Description: application/gzip

------------------------------------------------------------------------------
Dive into the World of Parallel Programming. The Go Parallel Website,
sponsored by Intel and developed in partnership with Slashdot Media, is your
hub for all things parallel software development, from weekly thought
leadership blogs to news, videos, case studies, tutorials and more. Take a
look and join the conversation now. http://goparallel.sourceforge.net/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to