On Wednesday 25 January 2006 08:27, Dan Track wrote: > Hi, > > I'm trying to connect a windows XP client to a remote pptp server. I'm > using windows XP at home on my home network which connects to the internet > via a fedora linux firewall using iptables with nat. > > What iptables rules do I need to insert to allow this to happen. I guess I > just need to forward packets. > > Thanks in advance for your help. > > Dan These are the forwarding rules I use (sans INPUT, OUTPUT, and MASQURADE rules); $IPT -A FORWARD -o $EXTIF -p tcp --dport 137 -j REJECT $IPT -A FORWARD -o $EXTIF -p tcp --dport 138 -j REJECT $IPT -A FORWARD -o $EXTIF -p tcp --dport 139 -j REJECT $IPT -A FORWARD -o $EXTIF -p udp --dport 137 -j REJECT $IPT -A FORWARD -o $EXTIF -p udp --dport 138 -j REJECT $IPT -A FORWARD -o $EXTIF -p udp --dport 139 -j REJECT $IPT -A INPUT -i $EXTIF -p udp --dport 137 -j REJECT echo "Forwarding through machine" $IPT -A FORWARD -i eth1 -j ACCEPT $IPT -A FORWARD -i $EXTIF -o $INTIF -m state --state ESTABLISHED,RELATED -j ACCEPT #$IPT -A FORWARD -i $EXTIF -m state --state ESTABLISHED,RELATED -j ACCEPT
