> acacia IE violation: IN=eth0 OUT=ppp0 > MAC=00:a0:cc:3e:22:44:00:16:6f:6c:3d:48:08:00 SRC=10.0.0.52 > DST=203.63.234.178 LEN=52 TOS=00 PREC=0x00 TTL=127 ID=9213 > > This is an example of the log when I try and connect to my work VPN
there doesn't seem to be much useful info here - protocol number for example, although from memory you have the protocol right further down.. can you turn more logging on? > iptables -A INPUT -p TCP -s 0.0.0.0/0 --source-port 1723 -j ACCEPT > iptables -A OUTPUT -p TCP -d 0.0.0.0/0 --destination-port 1723 -j ACCEPT I think the problem may be here though - try removing the source and destination ports in favour of just generic tcp port - it's been a while since I worried over iptables but I'm pretty sure INPUT and OUTPUT apply to each interface, not just input from the net or whatever.. if you want it locked down, then you should specify the interface as well in these rules if you're not getting anywhere, just try a generic IP rule with an ACCEPT for the VPN terminator btw, I don't believe PPTP is considered secure anymore -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
