PF-NAT
Scott Ullrich
sullrich at gmail.com
Thu Nov 30 08:42:50 PST 2006
On 11/30/06, Daniel Hartmeier <daniel at benzedrine.cx> wrote:
> On Thu, Nov 30, 2006 at 02:03:57PM -0200, Gilberto Villani Brito wrote:
>
> > Try change this options.
>
> None of those will help if you really want two concurrent PPTP
> connections to the same external peer.
>
> pf doesn't look into the payload of PPTP packets and hence can't decide
> which internal peer to dispatch incoming replies from the one external
> peer to (there are no port numbers helping there, like in TCP).
>
> You can try a userland PPTP proxy, like
>
> http://freshmeat.net/projects/frickin/
>
> There are no plans to integrate PPTP proxy support into pf. While
> libalias_pptp and ng_nat look potentially helpful, you'd have to write
> that patch yourself, or find a developer that is using PPTP (not me ;)
The author of Frickin just repoted on the pfSense forums that a
majority of the issues with the proxy have been resolved in the
SVN/CVS version of Frickin. If you go this route you may want to use
the latest codebase.
Scott
More information about the freebsd-pf
mailing list