Koozali.org: home of the SME Server

Calling all PPTP Guru's!!

Mark Signal

Re: Limiting PPTP to port 3389 (terminal services). Was: [Re
« Reply #15 on: November 13, 2003, 11:34:15 AM »
Hi

I tried just copying the text into a shell to a remote v6b3 box as follows:

iptables -A FORWARD -p tcp --dport 3389 -i ppp+ -o eth0 -j ACCEPT
iptables -A FORWARD -i ppp+ -o eth0 -j REJECT

and then connected from another remote box via pptp to the v6b3 box and still had full access to everything

what am I doing wrong?


cheers


Mark

Cyrus Bharda

Re: Limiting PPTP to port 3389 (terminal services). Was: [Re
« Reply #16 on: November 14, 2003, 12:21:07 AM »
Mark,

I thought you had to put it into the masq file fragment, expand it and then reboot, but theroretically it should just work if you entered them in the shell as it adds them directly to the masq file and applies it right?

I am not too sure on where they go actually, but I am sure they are the right rules.

Sorry I cannt be of more assistance, once I am able to get a test box up I can fiddle a bit more with it.

Cyrus Bharda