PPP and Route Delete
Mike Tancsa
mike at sentex.net
Mon Jan 10 18:30:57 UTC 2011
On 1/10/2011 1:16 PM, Melissa Jenkins wrote:
>>> I've been working on migrating a PPTP server from FreeBSD 7.1 to FreeBSD 8.1. The server is configured using PopTop (from ports) and PPP (/usr/sbin) rather than MPD. (Before anybody tells me to use MPD we can't because it doesn't inject packets into the kernel in the same way and it's not possible to filter on them correctly)
>>
>> I use mpd a lot. Can you expand on the problem you have with it ? I am not sure what you mean by cant filter on it.
>
> Packets sent over a VPN to mpd didn't enter PF at the same point as they do from PPP - i couldn't get RDR or BINAT to redirect on anything inbound over the VPN.
>
> I haven't tried MPD in almost two years so this may have changed.
When netgraph interfaces come and go, you might need to do a reload of
your rules, or dynamically add/delete them if your rule set specifically
references ng interfaces. If thats all it was, its easy enough to hook
into using something like
set iface up-script /usr/local/etc/mpd5/up.sh
mpd5.5 is worth checking out for other reasons. It can do a lot and is
well supported for pptp stuff.
---Mike
More information about the freebsd-net
mailing list