> I want to pass pptp traffic through my firewall. For that I added, > iptables -A FORWARD -s 192.168.0.0/255.255.0.0 --protocol 47 -j > ACCEPT > in my firewall list plus, > iptables -A FORWARD -s 192.168.0.0/255.255.0.0 -p udp -m udp --dport 1723 -j A CCEPT > iptables -A FORWARD -s 192.168.0.0/255.255.0.0 -p tcp -m tcp --dport 1723 -j A CCEPT > But my clients cannot connect to it. It gives connection timed out. > What must be the error? > My old firewall (before I made changes given above is at), > http://payal.staticky.com/tables.txt are you NAT-ing the connections from 192.168.0.0/24 to the PPTP server? according to "-A POSTROUTING -s 192.168.0.0/255.255.0.0 -j MASQUERADE" in your posted rules, you are. you need the pptp-conntrack-nat from POM for this to work. -j
