NATD no longer works for outgoing PPTP VPN?

From: Mike Jakubik <mikej_at_rogers.com>
Date: Tue, 20 Jul 2004 20:32:42 -0400 (EDT)
Hello,

I have recently discovered, after long periods of trying to debug a VPN
server, that i can not establish PPTP VPN connections any more. The
culprit seems to be natd not forwarding GRE properly. I have tried adding
a 'redirect_proto gre' option to natd, but same behaviour occurs. I could
swear that not too long ago all my PPTP connection worked fine, as i have
a few clients defined in my windows pc. I have tried 3 different VPN
server, ranging from Windows 2000 server to FBSD with MPD, none work.
Plugging Internet directly to my PC works fine. Here is what the setup
looks like:

Me (Windows XP)    FreeBSD 5-C w/ NATD    Internet      VPN server
192.168.0.200      192.168.0.1            69.193.41.53  66.11.183.182

Here is rc.conf
---
gateway_enable="YES"
natd_enable="YES"
natd_interface="xl0"
natd_flags="-f /etc/natd.conf"

Here is natd.conf:
---
interface xl0
dynamic yes
use_sockets yes
same_ports yes
redirect_port tcp win2000:3389 3389
#redirect_proto gre win2000

And here is a log from natd -v when trying to estabish a VPN connection
(it looks like GRE is not being aliased correctly, windows pc just sits at
'Verifying username...'):
---
natd[32158]: Aliasing to 69.193.41.53, mtu 1500 bytes
Out {default} 0000ffff[TCP]  [TCP] 192.168.0.200:1108 ->
66.11.183.182:1723 aliased to
           [TCP] 69.193.41.53:1108 -> 66.11.183.182:1723
In  {default} 0000ffff[TCP]  [TCP] 66.11.183.182:1723 -> 69.193.41.53:1108
aliased to
           [TCP] 66.11.183.182:1723 -> 192.168.0.200:1108
Out {default} 0000ffff[TCP]  [TCP] 192.168.0.200:1108 ->
66.11.183.182:1723 aliased to
           [TCP] 69.193.41.53:1108 -> 66.11.183.182:1723
In  {default} 0000ffff[TCP]  [TCP] 66.11.183.182:1723 -> 69.193.41.53:1108
aliased to
           [TCP] 66.11.183.182:1723 -> 192.168.0.200:1108
Out {default} 0000ffff[TCP]  [TCP] 192.168.0.200:1108 ->
66.11.183.182:1723 aliased to
           [TCP] 69.193.41.53:1108 -> 66.11.183.182:1723
In  {default} 0000ffff[TCP]  [TCP] 66.11.183.182:1723 -> 69.193.41.53:1108
aliased to
           [TCP] 66.11.183.182:1723 -> 192.168.0.200:1108
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
Out {default} 0000ffff[TCP]  [TCP] 192.168.0.200:1108 ->
66.11.183.182:1723 aliased to
           [TCP] 69.193.41.53:1108 -> 66.11.183.182:1723
Out {default} 0000ffff[47]    [47] 192.168.0.200 -> 66.11.183.182  aliased to
           [47] 192.168.0.200 -> 66.11.183.182
In  {default} 0000ffff[TCP]  [TCP] 66.11.183.182:1723 -> 69.193.41.53:1108
aliased to
           [TCP] 66.11.183.182:1723 -> 192.168.0.200:1108
Out {default} 0000ffff[47]    [47] 192.168.0.200 -> 66.11.183.182  aliased to
           [47] 192.168.0.200 -> 66.11.183.182
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
Out {default} 0000ffff[47]    [47] 192.168.0.200 -> 66.11.183.182  aliased to
           [47] 192.168.0.200 -> 66.11.183.182
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
Out {default} 0000ffff[47]    [47] 192.168.0.200 -> 66.11.183.182  aliased to
           [47] 192.168.0.200 -> 66.11.183.182
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
Out {default} 0000ffff[47]    [47] 192.168.0.200 -> 66.11.183.182  aliased to
           [47] 192.168.0.200 -> 66.11.183.182
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
Out {default} 0000ffff[47]    [47] 192.168.0.200 -> 66.11.183.182  aliased to
           [47] 192.168.0.200 -> 66.11.183.182
In  {default} 0000ffff[47]    [47] 66.11.183.182 -> 69.193.41.53  aliased to
           [47] 66.11.183.182 -> 69.193.41.53
In  {default} 0000ffff[TCP]  [TCP] 66.11.183.182:1723 -> 69.193.41.53:1108
aliased to
           [TCP] 66.11.183.182:1723 -> 192.168.0.200:1108
Out {default} 0000ffff[TCP]  [TCP] 192.168.0.200:1108 ->
66.11.183.182:1723 aliased to
           [TCP] 69.193.41.53:1108 -> 66.11.183.182:1723
In  {default} 0000ffff[TCP]  [TCP] 66.11.183.182:1723 -> 69.193.41.53:1108
aliased to
           [TCP] 66.11.183.182:1723 -> 192.168.0.200:1108
In  {default} 0000ffff[TCP]  [TCP] 66.11.183.182:1723 -> 69.193.41.53:1108
aliased to
           [TCP] 66.11.183.182:1723 -> 192.168.0.200:1108
Out {default} 0000ffff[TCP]  [TCP] 192.168.0.200:1108 ->
66.11.183.182:1723 aliased to
           [TCP] 69.193.41.53:1108 -> 66.11.183.182:1723
In  {default} 0000ffff[TCP]  [TCP] 66.11.183.182:1723 -> 69.193.41.53:1108
aliased to
           [TCP] 66.11.183.182:1723 -> 192.168.0.200:1108


Thank You.
Received on Tue Jul 20 2004 - 22:32:43 UTC

This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:02 UTC