Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
11-15-2001, 02:37 AM
|
#1
|
|
LQ Newbie
Registered: May 2001
Posts: 16
Rep: 
|
Multiple Windows PPTP Clients/Easy VPN Solution???
Hey All,
I'm running a PoPToP server for VPN connections and desperately need a way to allow multiple WinBlows PPTP clients to access it from behind a single firewall IP. Is there a way to change the Call ID on the client side to allow this???
Alternatively, is there a 'quick, light and easy' VPN solution with a Windows 9x/NT/etc client and linux server that allows multiple connections as described above??? Or another way to achieve same...?
Any help forever appreciated. Thanks  |
|
|
|
|
11-16-2001, 09:29 AM
|
#2
|
|
Member
Registered: Apr 2001
Location: London
Posts: 408
Rep: 
|
Tarantismic Yak,
What's the problem?
It's designed to work with 98, NT40 client and server and 2000.
Please explain what you mean by "behind a single firewall IP".
Do you mean infront of a firewall?
i.e you have your VPN PPTP linux server running on a internal network and your external modem Windozes systems all have modem connections, but when you try to connect your to your VPN PPTP server a firewall is in front of it ?
Where does the Call ID come into this, does the firewall use RSA's call ID token ?
It's the only Linux PPP VPN server I know that can do what you want.
/Raz
|
|
|
|
|
11-18-2001, 04:02 AM
|
#3
|
|
LQ Newbie
Registered: May 2001
Posts: 16
Original Poster
Rep:
|
Raz,
First - thanks for the reply, it's nice of you to lend an ear
What I mean by 'single firewall IP' is that there are multiple clients on a number of private LANs, each behind their own firewall with a single public IP, who need to access the VPN server which has a public IP on a seperate subnet. The firewalls on the client networks are in this case simple NAT capable routers.
The problem is that I can only get one client per LAN/router/public IP to connect, due to the combined limitations of PPTP and NAT, after that almost all the reply packets from the server get sent to the first client machine.
On the last note, it's the only solution I've found so far too, if only the clients could run Linux too, it would be so simple!
Thanks again,
The Yak |
|
|
|
|
11-21-2001, 09:32 AM
|
#4
|
|
Member
Registered: Apr 2001
Location: London
Posts: 408
Rep:
|
ah I see, you like complicated configurations.
It's doesn't help that your using NAT but I'll have a look around and see if I can find some answers.
/Raz
|
|
|
|
|
11-21-2001, 10:51 PM
|
#5
|
|
LQ Newbie
Registered: May 2001
Posts: 16
Original Poster
Rep:
|
Hey Raz,
Again, thanks for looking into this. The setup is not complicated by choice, I'm of the philosophy that simpler is better and always less likely to have problems but unfortunately simpler doesn't always mean cheaper. We have around 50 offices that need to have each machine on their LAN connected to the PPTP server. It is not economically viable to place a PPTP capable router or server at each location - hence multiple Windows clients behind each LANs firewall with the required NAT. Ideally the PPTP solution would be replaced by a more suitable VPN protocol, but an alternative has been hard to find.
Thanks again,
The Yak
|
|
|
|
|
04-17-2003, 01:24 PM
|
#6
|
|
Member
Registered: Jan 2003
Posts: 52
Rep:
|
Any new ideas on this?
I am in the same boat. I have a VPN server off site. I have clients onsite behind a linux firewall with Nat. Only one client can connect to VPN server.
I don't want to resort to WINBLOWS to fix this issue and open my site to being hacked.
Any and all help would be appreciated.
|
|
|
|
All times are GMT -5. The time now is 03:52 PM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
