Linode Forum
https://forum.linode.com/

PPTPd routing all traffic into VPN
https://forum.linode.com/viewtopic.php?f=19&t=6769
Page 1 of 1

Author:  lonewalker [ Sun Feb 27, 2011 1:07 am ]
Post subject:  PPTPd routing all traffic into VPN

Hi all, I've setup pptpd on Ubuntu 10.04 for the most part, it's able to connect, authenticate and ping the server itself, but is unable to ping any internet ips nor resolve domain names? any ideas

Code:
/etc/ppp/pptpd-options
========
name pptpd
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
require-mppe-128
ms-dns 10.3.0.1
proxyarp
nodefaultroute
lock
nobsdcomp
auth

/etc/pptpd.conf
=========
option   /etc/ppp/pptpd-optionslogwtmp
localip   10.3.0.1
remoteip   10.3.0.10-25

cat /proc/sys/net/ipv4/ip_forward
====================
1

/etc/rc.local
=======
iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A FORWARD -s 10.8.0.0/24 -j ACCEPT
iptables -A FORWARD -j REJECT
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 10.3.0.0/24 -o eth0 -j MASQUERADE



and yes i have OpenVPN running fine on the same server too, not sue if its related.

Author:  otherbbs [ Tue Mar 01, 2011 10:01 pm ]
Post subject:  Re: PPTPd routing all traffic into VPN

I'm guessing here but the option 'nodefaultroute' might have something to do with it. If you want all traffic on the VPN, the client should have a default route to the VPN server. Otherwise the ip traffic will route via the whatever your gateway is prior to establishing the VPN connection. Some traceroutes would be able to verify this.

--
Travis

Page 1 of 1 All times are UTC-04:00
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/