Re: pptp vpn

After reading your email I did a quick Google search.

Both PPTP and IPSec can go through a NAT firewall if the firewall has
been configured to do so. Wireless hot spots and Internet Cafes that use
broad band routers like Linksys may not have this feature turned on. I
also looked into Cisco PIX firewalls. It apperies that PPTP through NAT
is not a default setting. I'm not a Cisco guy so I'm not sure if this is
the case.

With SSL based VPN's you don't need to turn anything on. It just works.
Assuming you have the server and client configured correctly.

Now about the m$ part of your email. Who would ever do network security
with m$?

ep wrote:
> "PPTP doesn't work with NAT"
>
> Grrrrr, m$ pptp DOES works with nat (and recent routers have moved beyond
> the ugly hack...). If he's m$ pptp client to m$ pptp server it's fine (I
> believe his client/server is rolling m$ pptp). In fact, just to cover that
> 1%; to make sure I wasn't about to stuff my foot in my mouth. I just labbed
> it up again, even though I did this already in a recent pentest...
>
>
> Client------FW(nat)--------------(nat)FW---------Server
>
> IT WORKS! LMAO READ AGAIN, IT WORKS!
>
> Tgif AKLUG, now back to work.
>
> --eddie
>
>
>
>
>
> -----Original Message-----
> From: aklug-bounce@aklug.org [mailto:aklug-bounce@aklug.org] On Behalf Of
> Damien Hull
> Sent: Friday, October 13, 2006 11:19 AM
> To: aklug@aklug.org
> Subject: Re: pptp vpn
>
> What you want for this is OpenVPN. It does everything over SSL. This is
> really cool because you can us it through a firewall. A lot of firewalls do
> network address translation or NAT for short. PPTP doesn't work with NAT.
> You can get fancy routers that tag each packet but it's a hack. You are
> better off using an SSL based VPN.
>
> If you are connecting Windows clients to your home network just get IPCop.
> There is a module for OpenVPN. There should be a way to connect Linux
> clients to IPCop but I havn't had time to look into it.
>
> Here's the site for OpenVPN: http://openvpn.net/
>
> Admin tool: http://sourceforge.net/projects/openvpnadmin/
>
> Blake Eggemeyer wrote:
>
>> i set up a small server at home
>> i want to acess it from school, so that i can save my CompSci hwk on it.
>> i have a router, the pptp option is enabled how do i tell the MS vpn
>> software that my routed IP is 66.58.216.90 and my server adress is
>> 192.168.1.5 any ideas?
>>
>> ---------
>> To unsubscribe, send email to <aklug-request@aklug.org> with
>> 'unsubscribe' in the message body.
>>
>>
>>
>
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org> with 'unsubscribe'
> in the message body.
>
>
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org>
> with 'unsubscribe' in the message body.
>
>

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Fri Oct 13 15:00:55 2006