RE: pptp vpn

"PPTP doesn't work with NAT"

Grrrrr, m$ pptp DOES works with nat (and recent routers have moved beyond
the ugly hack...). If he's m$ pptp client to m$ pptp server it's fine (I
believe his client/server is rolling m$ pptp). In fact, just to cover that
1%; to make sure I wasn't about to stuff my foot in my mouth. I just labbed
it up again, even though I did this already in a recent pentest...

Client------FW(nat)--------------(nat)FW---------Server

IT WORKS! LMAO READ AGAIN, IT WORKS!

Tgif AKLUG, now back to work.

--eddie

-----Original Message-----
From: aklug-bounce@aklug.org [mailto:aklug-bounce@aklug.org] On Behalf Of
Damien Hull
Sent: Friday, October 13, 2006 11:19 AM
To: aklug@aklug.org
Subject: Re: pptp vpn

What you want for this is OpenVPN. It does everything over SSL. This is
really cool because you can us it through a firewall. A lot of firewalls do
network address translation or NAT for short. PPTP doesn't work with NAT.
You can get fancy routers that tag each packet but it's a hack. You are
better off using an SSL based VPN.

If you are connecting Windows clients to your home network just get IPCop.
There is a module for OpenVPN. There should be a way to connect Linux
clients to IPCop but I havn't had time to look into it.

Here's the site for OpenVPN: http://openvpn.net/

Admin tool: http://sourceforge.net/projects/openvpnadmin/

Blake Eggemeyer wrote:
> i set up a small server at home
> i want to acess it from school, so that i can save my CompSci hwk on it.
> i have a router, the pptp option is enabled how do i tell the MS vpn
> software that my routed IP is 66.58.216.90 and my server adress is
> 192.168.1.5 any ideas?
>
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org> with
> 'unsubscribe' in the message body.
>
>

---------
To unsubscribe, send email to <aklug-request@aklug.org> with 'unsubscribe'
in the message body.

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Fri Oct 13 14:17:03 2006