pptpd server and erquired iptables rules..

mb2 at os.datafx.com.au mb2 at os.datafx.com.au
Sun Mar 4 23:02:08 UTC 2007 

Hi,

Trying to setup pptpd server on 6.06.1 with Windows XP as client - VPN 
connection is successfully established, but cannot ping "localip" from 
client (192.168.99.1) and also cannot ping remoteip from server(Once 
VPN is established - 192.168.99.10) - Get "ping: sendmsg: Operation not 
permitted" - Also cannot ping Servers LAN network from client either.

I'm fairly certain I am simply missing some iptables rules.


/etc/pptpd.conf:
option  /etc/ppp/pptpd-options
localip 192.168.99.1
remoteip        192.168.99.10-50

/etc/ppp/pptpd-options
refuse-pap
refuse-chap
refuse-mschap
# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft
# Challenge Handshake Authentication Protocol, Version 2] authentication.
require-mschap-v2
# Require MPPE 128-bit encryption
# (note that MPPE requires the use of MSCHAP-V2 during authentication)
require-mppe-128

LAN Address range: (eth0) 10.5.3.0/24

Current iptables rules:

Chain INPUT (policy DROP)
ACCEPT     all  --  192.168.99.0/24      10.5.3.0/24

Chain FORWARD (policy DROP)
target     prot opt source               destination         ACCEPT     
all  --  192.168.99.0/24      10.5.3.0/24

Chain OUTPUT (policy DROP)
target     prot opt source               destination         ACCEPT     
all  --  panels/24            192.168.99.0/24

After successful client vpn connection:

# ifconfig

ppp1      Link encap:Point-to-Point Protocol           inet 
addr:192.168.99.1  P-t-P:192.168.99.10  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1396  Metric:1
          RX packets:49 errors:0 dropped:0 overruns:0 frame:0
          TX packets:9 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:3          RX bytes:4638 (4.5 KiB)  
TX bytes:108 (108.0 b)

# ping 192.168.99.10
PING 192.168.99.10 (192.168.99.10) 56(84) bytes of data.
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permitted

Any help is appreciated.

-------------------------------------------------------------------------
This e-mail was sent via Data FX Online WebMail http://www.datafx.com.au/

More information about the ubuntu-users mailing list