Well what I've done is, I edited the pptp service and addet the GRE protocol.
Then made 2 rules: masquerade pptp from inet to lan and vice versa.
Would this do the same ??
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Can anybody tell me what rules i need that i can
connect to a pptp server from a LAN cleint ?
LAN-Client ---> Firewall ---> Internet ---> VPN Server
accept service pptp from client.local.lan to vpnserver.world.inet
Would that work?
You may need to add a rule to support GRE as well, at least that what I need to do...
Well what I've done is, I edited the pptp service and addet the GRE protocol.
Then made 2 rules: masquerade pptp from inet to lan and vice versa.
Would this do the same ??
The service makes sense to me.
With the rules, do you mean that you have a rule:
masquerade pptp from inet to lan
and a rule:
masquerade pptp from lan to inet
?
That wouldn't make much sense to me. I'd think you need:
accept pptp from lan to inet
snat pptp from lan to inet (snat is better than masq)
[quote]
With the rules, do you mean that you have a rule:
masquerade pptp from inet to lan
and a rule:
masquerade pptp from lan to inet ?
[/quote]
Yes thats what i had...
But now I changed it to what you suggest and it works :)
I was really confused about that...