IPTABLES: Allow PPTP Server to access the Internet
 

Hi,

I'm running an own PPTP Server, but I can't get it to access the internet.

All my PCs at home run in the 192.168.0.0/24 net,
the PPTP Server has local IP192.168.0.5 and remote IP 192.168.0.80-99.

The router to the internet is at 192.168.0.1, and the IP of eth0 on the machine where the pptpd runs is 192.168.0.4.


I want to be able to connect to the internet trough that VPN and access my local LAN servers (which works fine so far). I can ping internet and local IPs successfully, but can not access them with a browser, or connect to them in any other way.

I have 'accepted' all in/output and forwards.

I am running a Squid proxy on the same machine, and if I do:
... I can access the internet through Squid, but of course Jabber/ICQ etc. won't work then because it just refers port 80.

But I want the PPTP Clients to connect to the internet directly, if I don't use that rule it's not possible to load any pages. But pinging works all the time. DNS is also working fine, but I can't even access webpages via IP directly.


So how can I allow the PPTP IPs 192.168.0.80-99 to get direct access to the Internet with Iptables?


Thanks in advance!

You need to allow "forward" from ppp0 to the outgoing interface and "forward" from the same interface to ppp0.

I've allowed all input, output and forward traffic, should have mentoined that.

But what do you mean with '"forward" from the same interface to ppp0.' ?


Regards

Has to be a rules, like:
FORWARD -i eth0 -o ppp0 -j ACCEPT
FORWARD -i ppp0 -o eth0 -j ACCEPT