Allowing GRE in IPFILTER

Toomas Aas toomas.aas at raad.tartu.ee
Wed May 4 10:28:37 PDT 2005


Calvin Lane wrote:

> Please let me know what the correct syntax is for allowing gre traffic 
> through through an ipfilter firewall running BSD 4.10. Thanks.

FreeBSD 4.10 contains IPFilter 3.4.31. For what you need to do, you need 
PPTP proxy which is available only in IPFilter 4.1.

So you'd need to install the latest IPFilter (4.1.8 I think) and then 
just add this to ipnat.rules:

map <external_if> <internal_net> -> 0/32 proxy port 1723 pptp/tcp

-- 
Toomas Aas --------------------------------------------------------
|arvutivõrgu peaspetsialist | head specialist on computer networks|
|Tartu Linnakantselei       | Tartu City Office                   |
----------------------------------------------------- +372 736 1274




More information about the freebsd-questions mailing list