Re: ipfw and Corporate VPN

From: Ditch Brodie (dbroadie_at_msn.com)
Date: 11/01/05 

Date: Tue, 01 Nov 2005 16:31:22 GMT

The simplest way I found to do this was to just allow ALL traffic between
the
company's VPN server and my gateway. Two rules, one for in and one for
out took care of this...but

This machine has run IPFW for a long time. I sometimes add rules from
the console but it boots up and runs my /etc/firewall/fwrules script just
fine. So I edited the /etc/firewall/fwrules file to include these two lines:

$fwcmd add allow all from corp_VPN to any
$fwcmd add allow all to corp_VPN from any

For some reason these two lines do not get added to the ruleset when I
reboot. I can manually add the rules just fine, but the script for some
reason will not enter these two in. I have edited this script file before
and it worked fine, I guess it's something simple again that is just
slipping
past me.

"Ditch Brodie" <dbroadie@msn.com> wrote in message
news:xqL9f.4213$AS6.1397@newsread3.news.atl.earthlink.net...
> I run FreeBSD-4.9-RELEASE as the gateway for my small
> LAN. I need to allow the windows machines on the inside
> private network to connect to the corporate VPN server.
> The IT guy tells me that I need to allow traffic for port #xxxx
> and protocol #47.
>
> The port number I think I can figure out, but how do I word
> a rule with the proper syntax for for a protocol? The man page
> and docs are very vague on this.
>
>
>

Relevant Pages

  • Re: FAQ Topic - Why do I get permission denied when accessing a frame/window? (2011-04-0
    ... In the normal browser security model, a script may only access the ... protocol, and port. ... page which has been read directly from local disc (file: protocol), ...
    (comp.lang.javascript)
  • Re: PPTP thru SUSEfirewall
    ... be a destination port? ... I will try to find the range of ports that the Windows VPN clients use ... to find the VPN port range and forward them to the VPN server that is ... Opensuse 10.x firewall/router with TCP port 1723 forwarded to ...
    (alt.os.linux.suse)
  • Re: L2TP port?
    ... The problem I have is that I cannot redirect port 500 through my firewall. ... 2-my home client will connect L2TP fine, IF I connect a PPTP tunnel first. ... > This filter allows Internet Key Exchange traffic to the VPN server. ...
    (microsoft.public.isa.vpn)
  • Re: Guide to VPN setup
    ... Is that a TCP port or UDP? ... Because I can only forward either TCP or UDP ... "Jim Behning" wrote in message ... >>network, on both internal and external interface of the VPN server, the ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: Trying to Setup VPN on W2K Server
    ... through the firewall (Linksys Router) is another. ... 47 is a protocol number and not TCP port. ... It'll make a big difference when configuring your firewall or router. ... >> to allow traffic only for pptp or l2tp to enter the VPN server. ...
    (microsoft.public.win2000.networking)