On Mon, Jan 19, 2004 at 12:03:32AM +0000, Antony Stone wrote: > On Sunday 18 January 2004 11:47 pm, Carl Farrington wrote: > > > From: Antony Stone [mailto:Antony@xxxxxxxxxxxxxxxxxxxx] > > > > > On Sunday 18 January 2004 11:00 pm, Carl Farrington wrote: > > > > Does anybody know if there is a workaround for this problem? As soon > > > > as I insmod ip_nat_pptp , poptop cannot accept any incoming pptp > > > > connections. > > > > > Why do you want to use both of these on the same box? > > > Well, I want to do both. I am putting together a router/gateway box. It > > performs NAT for all the workstations on the private side of the box > > (hence the need for ip_nat_pptp since some workstations need to contact > > outside pptp servers), and also allows access from the outside when > > users are roaming (hence the need for poptop). > > > > Astaro Security Linux (www.astaro.com) is one product which achieves > > this without problem using poptop, as is win2k rras. > > In that case your simplest solution might be to ask Astaro how they've done > it. Their products are based on Linux / netfilter etc, so should be fully > GPL. If you read the PPTP helper sourcecode, you will find that I wrote it for astaro. There's no black magic in ASL, they're using the same code that is in patch-o-matic. Carl: Are you sure you are running the latest pptp helper from patch-o-matic (20031219) ? > Antony -- - Harald Welte <laforge@xxxxxxxxxxxxx> http://www.netfilter.org/ ============================================================================ "Fragmentation is like classful addressing -- an interesting early architectural error that shows how much experimentation was going on while IP was being designed." -- Paul Vixie
Attachment:
signature.asc
Description: Digital signature
