[Devil-Linux-discuss] VPN Passthrough solution (PPTP server behind DL's IPTABLES firewall)

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi guys,

I ran into a problem again. I wanted to reach a Windows VPN server =
behind a DL firewall. As many times before it's just not "that" easy. =
But I found the solution quickly on the net. It was just not in the =
usual format of DL's firewall.rules file. So I thought I "reformat" it =
and share it with you here.=20

# Windows PPTP VPN Passthrough
SERVER_IP=3D192.168.1.1	# Internal IP of server.
PORT=3D1723
${IPTABLES} -A INPUT -p tcp --dport 47 -j ACCEPT
${IPTABLES} -A FORWARD -p 47 -s 0/0 -j ACCEPT
${IPTABLES} -t nat -A PREROUTING -p 47 -i ${OUT_DEV} -j DNAT --to =
${SERVER_IP}
${IPTABLES} -A PREROUTING -i ${OUT_DEV} -t nat -p TCP --dport $PORT -j =
DNAT --to ${SERVER_IP}:${PORT}
${IPTABLES} -A FORWARD -p TCP -d ${SERVER_IP} --dport $PORT -i =
${OUT_DEV} -o ${INT_DEV} -j ACCEPT

I think it would be a good idea if you could include it in the next =
release in some form. It's like the VPN Passthrough option avaiable in =
almost every broadband router on the market.

Gotta go now:

George Tarnai