LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 10-17-2008, 09:20 AM   #1
u4david
LQ Newbie
 
Registered: Jan 2008
Posts: 6

Rep: Reputation: 0
Arrow VPN pptpd connected vpn server only access need help please


My network enviroment is:windows XP,unix,linux ubuntu .
My Goal is to connect remotely through VPN to and access resources on any PC.(also browse internet when connected)

So far I can establish vpn connection and access vpn server only.
Can not ping any other PC on the network nether browse internet.


To describe my network :
I have netgear router set up with Static WAN IP configured with NAT.
On local network the router is the gateway 192.168.1.1
Using Port forwarding to direct traffic to VPN server 192.168.1.12

VPN server is:
Ubuntu 6.10 ,Ip address 192.168.1.12 static eth0 and 192.168.1.13 static eth1

nntpd installed
Only config I changed was adding ip address in config file:
local 192.168.1.13
remote 192.168.1.15-20 ( is this needs to be same subnet as server?)

and uncommented:

bcrelay eth1

ms-dns 192.168.1.1 (in option file)


What needs to be done to open up the communication past VPN server?

Hints:
-change my ip local and remote configuration? how and why?
-enable IP forwarding on VPN server?how and why?
-routing tables changes? how and why?
-other? what?how?and why?

Last edited by u4david; 10-20-2008 at 10:23 AM. Reason: More clear description
 
Old 10-17-2008, 03:54 PM   #2
Zurvy
LQ Newbie
 
Registered: Oct 2008
Posts: 3

Rep: Reputation: 0
Hey there,

Your information is a bit chaotic. I am not an expert, but I have set-up a working pptp server and it works without any problem (the only problem I have is that a single user can login multiple times)

But ok, You should first specify your pptp-subnet range. Edit your pptpd.conf file ==> at the bottom give your localip and specific address, preferably different from your servers because of security reasons for example 10.80.10.1(you could then isolate pptp server better when making firewall rules)

Specify your range of ip addresses for your pprp server by giving the remoteip a range, like 10.80.10.10-50 (your clients will then get a ip between the range 10.80.10.10 - 10.80.10.50). Your pptp subnet is then in this case 10.80.10.0/24

Also, I had to push the DNS settings to my clients in order to make it work. That you can edit in pptpd-options file. ==> Edit the the line ms-dns with the prober ip-number. In your case, your router is your dns-server ==> So, you should uncomment the line and thus add,
ms-dns 192.168.1.1 # my Router will act as dns-server

Having done that, you should also specify your linux box to NAT the packages from your pptp-subnet.

In you case, I think you should add the following ip-tables rule (just go in terminal and try it out)
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

Try visiting this site to find out where your problem is exactly during the routing
http://poptop.sourceforge.net/dox/di...rwarding.phtml

You dont have to edit any routing rules, because the PPTP-server does tha t for you. You should only specify the NAT/Firewall rules in order to make it work.

Best of luck,
Zurvy


Quote:
Originally Posted by u4david View Post
Windows XP,unix,linux ubuntu network.
Goal to connect remotely through VPN to this network and access resources on any PC.(also browse internet when connected)

So far I can establish vpn connection and access vpn server only.
Past that nothing.Pings are dead.


I have netgear router Static IP/nat/router .(lan IP 192.168.1.1)
Port forwarded to VPN server 192.168.1.12

VPN server:
Ubuntu 6.10 ,pptpd 192.168.1.12 eth0 and 192.168.1.13 eth1


Only config I changed was adding ip address in config file:
local 192.168.1.12(is this needs to be same as the server ip? or other? why to have more that one ip here?)
remote 192.168.1.15-20 ( is this needs to be same subnet as server?)

and uncommented
bcrelay ( should I put here eth1 or eth0? like this):
bcrelay eth1

Then I created user.


What needs to be done to open up the communication past VPN server?

Hints:add nic to bcrelay?what nic and why?
-change my ip local and remote configuration? how and why?
-enable IP forwarding on VPN server?how and why?
-routing tables changes? how and why?
-other? what?how?and why?

Last edited by Zurvy; 10-17-2008 at 04:03 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
sharing VPN access with lan + after vpn connected unable to ping lan/public ip xxx_anuj_xxx Linux - Networking 1 03-14-2008 02:50 AM
How to make non-vpn machines to access VPN server deepugopi Linux - Networking 0 07-31-2007 06:55 AM
Help with vpn pptpd andybrr Red Hat 2 10-26-2006 04:07 PM
issues with VPN pptpd server onorua Linux - Networking 1 08-25-2006 03:45 PM
VPN with pptpd m1111 Linux - Networking 0 02-07-2006 01:42 PM


All times are GMT -5. The time now is 06:04 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration