Re: Forwarding PPTP traffic to Internet

OK, thanks, let me try and explain better.

- I'm talking broadband connections from the laptop through to ISP to
router.
- the router is a DLink 824-vup. That said, I'm not trying to use its
built-in VPN connections support - from the outside world's
perspective, it's merely proxying the appropriate ports from the
server. Yes, at the end of the day, it's the server's LAN's gateway.

The problem is a bit of a "chestnut" problem: the PPTP-over-broadband
VPN connection to the server works just fine, and does everything I
want, EXCEPT that I want to be able to also see the rest Internet (e.g.
Websurf) while the VPN connection is active. I'm aware of the
so-called "split-tunnelling" solution, which allows the client machine
to directly see the 'Net by an appropriate configuration at the client
end. But I don't want to do that due to the security issues it raises.


So I figure I need to get the Linux server to route things
appropriately i.e. traffic from that laptop via the VPN that is
destined for the server's LAN stays with the server's LAN, while
traffic that isn't so destinated gets forwarded through to the "Big
Wide World" (which would therefore go via the router).

Hence, I've thrown in the iptable rule as per my prior posting, but
this doesn't seem to be working, and I don't really see why not, or how
to diagnose it.

What I do have so far is:
(a) a working VPN connection, with traffic happily emerges at the
server end through ppp0.
(b) the ability for the server itself to see the Internet - I can
happily websurf using the server's web browser.

So the problem just seems to be making that 'bridge' between the two.

BTW, (bit of a newbie comment coming!) I thought routing was done with
iptables - hence my solution in the preceding posting. So what's the
difference between the kernel's routing tables (as manipulated with the
route utility) and the iptables (as manipulated with the iptables
utility)?

Thanks in advance for your help.

Gus.

.

Relevant Pages

  • Re: static routing
    ... Connections work going out from inside the router, ... I'll have to remove the router and connect the server directly to the cable ... A static route has been added that matches the subnet ...
    (microsoft.public.windows.server.networking)
  • Re: Connection from remote computer to network SQL Server
    ... There is no firewall on the W2K machine acting as the SQL server. ... I tried making the SQL machine a "trusted" on the router. ... connection works. ... To find the IP address of your computer inside the network, ...
    (microsoft.public.access.adp.sqlserver)
  • Re: Networking Question - VLANs on SBS 2003 Premium SP1
    ... port on the old router so I now have a segregated WLAN. ... be sure you do not enable any DHCP server in internal network. ... On the Connection Type page, click Broadband, and then click Next. ... On the Network Connection, You must enable and configure the network ...
    (microsoft.public.windows.server.sbs)
  • Re: Urgent! New router and big disaster
    ... seleting full time broadband connection. ... Les Connor [SBS Community Member - SBS MVP] ... check the router as well and unless I missed a firewall setting on it, ... Anyway the Server Ipconfig /all is this... ...
    (microsoft.public.windows.server.sbs)
  • RE: Can not access network resources via VPN connection
    ... share folder via the VPN connection. ... the ipconfig /all outcome on VPN client is wrong (same as server ... Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)