[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: VPN to a host behind the firewall

On Thu, Nov 25, 1999 at 03:35:06PM +0100, Jarle Aase wrote:
> 
> I have a firewall running Linux 2.12 kernel with patch from kerneli.org, Debian Slink (latest stable) and ipchains 1.3.9 (compiled from the original source).
> 
> The setup is like this:
> 
>    Internal net, non-legal IP series, masqueraded
>          |
>          |
>       Firewall 
>          |
>          |
>   Internet router
> 
> 
> 
> A NT server on the internal net should now be used as a VPN server for Win98 clients connecting from Internet. NT use IP protocol 47 (gre) for VPN. The firewall is not responsible for any security issues on this protocol.
> 
> My question is:
>   1) Do I have to apply any special patches in order to make the firewall handle IP protocol 47?
> 
>   2) What is the best way to reach the NT server on the internal network? Since the connections are coming from the Internet, I guess I need to set up some sort of port-forwarding?

Info & kernel patches for allowing pptp and ipsec through ip-masquerade
can be found here:
	http://www.wolfenet.com/~jhardin
HTH

-- 
  Mike Schmitz     mschmitz@colug.org     http://mschmitz.colug.org/
  Don't blame me - I voted libertarian!   http://www.lp.org/
  Use Debian Linux - the free Gnu/Linux   http://www.debian.org/
				  -----------        
      "If encryption is outlawed, only outlaws will have encryption"
Reply to: