Hi All the clients were coming from a frame link router on the internal lan, I adjusted the routing there and it works fine, the linux firewall never have to deal with these packets. I tried to set the linux firewall as the deafult route to make it see the reply packets wich it did, but still this did not work, maybe the pptp patch where interfering i dont know. I also tried to create another routing table like this: ip rule add from 192.168.0.0/16 to $pptpsrv table pptp ip route add $pptpsrv via 192.168.1.2 table pptp but still the pptp traffic did not work. I belive that what I was trying to achive is not possible at the moment for pptp, with http pop etc. this works fine but pptp ................... Thanks for answering though. Mvh John Berntsen / Pepco AS ----- Original Message ----- From: "Jozsef Kadlecsik" <kadlec@xxxxxxxxxxxxxxxxx> To: "John Berntsen" <john@xxxxxxxx> Cc: <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Monday, May 05, 2003 10:02 AM Subject: Re: asymetric routing > Hi, > > On Mon, 28 Apr 2003, John Berntsen wrote: > > > Everything worked fine, except for the pptp vpn against that one server. > > > > Clients trying this are nt4 boxes, and traffic works like this as far > > as i can understand: client - linux-gateway - cisco router - pptp > > server and back like: pptp server - nated ip on cisco - client > > That is the problem I think: the linux gateway does not see the reply > packets, which is needed for conntrack/NAT to work properly. > > [Please wrap your lines.] > > Best regards, > Jozsef > - > E-mail : kadlec@xxxxxxxxxxxxxxxxx, kadlec@xxxxxxxxxxxxxxx > PGP key : http://www.kfki.hu/~kadlec/pgp_public_key.txt > Address : KFKI Research Institute for Particle and Nuclear Physics > H-1525 Budapest 114, POB. 49, Hungary >
