allow vpn clients to connect to internal vpn server
Gregory Bond
gnb at itga.com.au
Tue Apr 15 15:46:49 PDT 2003
> My privat net is 192.168.0.0/24 and has Win VPN server in it.
> Natd has redirection: redirect_port tcp 192.168.0.1:1723 1723
> What should be added to allow external vpn clients to connect to my internal
> vpn server?
This is what we have for the VPN server rules, _AFTER_ the NATD diversion:
${fwcmd} add pass gre from any to ${terminator}
${fwcmd} add pass gre from ${terminator} to any
${fwcmd} add pass gre from ${oip} to any out xmit ${oif}
${fwcmd} add pass tcp from any to ${terminator} pptp setup
where of course ${terminator} is the IP address of the internal VPN server.
More information about the freebsd-ipfw
mailing list