Topic: PPTP tunnel

[brian kirk]

Hi - having given up on ipsec I have installed a pptp tunnel between two sme 5.5U6 servers. I can ping from server 1 to a pc on server 2's network but cant ping from a pc on server 1's network to server 2 or any pc on the 2 network. I assumed both networks would be visible to each other using ip addresses if the servers have a pptp vpn between them. Can someone confirm if this is correct please.
Regards
Brian

[Kelvin]

Hi Brian,

>I assumed both networks would be visible to each other

Not with PPTP. Need IPSec for this.

Consider this.

For PPTP, say from SME server A to another, say server B, you would have setup a route at server A when setting up the PPTP connection which will then enable workstations on LAN A to see LAN B. However, unlike IPSec, there is nothing setup at Server B to tell him about Server A or LAN A. Therefore LAN A can see B but not the other way around.

Kelvin

[brian kirk]

Thank Kelvin
I wanted to be able to connect from a PC behind the pptp client server to one behind the pptp server. From what you say I should be able to do this.
Can I make a pptp sme server to server vpn back the other way and be able to see the lan the other way? I think I will have to have another go at ipsec.
Regards
Brian

[Lloyd Keen]

I started writing a howto for this ages ago which includes instructions how to add the route. See http://e-smith.org/bboard/read.php?v=t&f=3&i=25101&t=25101

[brian kirk]

Thanks Lloyd - I used your post to get the tunnel up. I have written a slightly expanded howto that I will post but am holding off as I can ping from the client server to the server & n/w but can't yet ping from a client n/w pc to the server n/w and I think this should be possible. Do I need additions to routing table?
Regards
Brian



http://e-smith.org/bboard/read.php?v=t&f=3&i=25101&t=25101

[Lloyd Keen]

I cant remember, I thought Darrell May had expanded on this work and created an rpm. I'm not sure though. Have you tried adding the remote networks in the server-manager? Maybe that might work.

[Kelvin]

Hi guys,

When I setup one of my client's site to use SME as the PPTP Client to a PPTP server, I actually did not need to change anything in SME aside from the chap secrets templates (for the login username and password which never changes for this client). No other changes were made to SME.

All routing etc, were configured through pptp-command itself.

Kelvin

[brian kirk]

Yippee - got it working. I have a pptp tunnel between sme servers and can browse the remote network in windows from pcs on the client network. The problem was that I had added the remote n/w in servermanager and used default as the gateway. This is not correct as traffic to the pptp tunnel needs to be routed through the tunnel (ppp0 in my case.) Once this routing was sorted out it all worked fine. Thanks to thise who have helped.
I have done a howto for this - where should I post - contribs.org?
Regards
Brian