VPN revisited.

IanC ian.coffey at gmail.com
Fri Aug 15 15:21:19 UTC 2008

Yes, its those very kernel modules and iptables rules Im currently
wrestling with, to no avail.

At the moment, Ive loaded ip_conntrack_pptp and reduced my iptables
rules to the minimum needed to have coovachilli function, plus
allowing related and established. There is nothing blocking the
connection and I can telnet to 1723 on the VPN box without issue. The
issue seems to be pass through or something else but I havent narrowed
it down farther. It just seems like the communication between pptp
client and vpn server goes haywire during the transaction. There is no
one else using VPN through this system right now.

Does anyone have experience with this?

Any help would be mucho appreciated at this point.


On Fri, Aug 15, 2008 at 10:54 AM, Sevan / Venture37
<venture37 at hotmail.com> wrote:
>> Yes, server is CentOS 5.2 running coovachilli 1.0.12 . Dual nics, eth1
>> from the radios, eth0 to public space.
> PPTP uses the GRE (Geneic Route Encapsulation) protocol which uses port 1723, protocol 47,
> You should have a look at your iptables rules + you used to need some kernel modules loaded aswell but it's been a while since I've needed to address this issue on Linux, it's relatively painless on *BSD to fix.
> Sevan / Venture37
> _________________________________________________________________
> Get Hotmail on your mobile from Vodafone
> http://clk.atdmt.com/UKM/go/107571435/direct/01/
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: chilli-unsubscribe at coova.org
> For additional commands, e-mail: chilli-help at coova.org
> Wiki: http://coova.org/wiki/index.php/CoovaChilli
> Forum: http://coova.org/phpBB3/viewforum.php?f=4

More information about the Chilli mailing list