PPTP Extension
Steve Moro
steve.moro@home.com
Sat, 3 Jun 2000 10:13:22 -0400
I would like to test these conditions also.
> -----Original Message-----
> From: netfilter@samba.org [mailto:netfilter@samba.org]On Behalf Of john
> huttley
> Sent: Friday, June 02, 2000 5:21 PM
> To: Multiple recipients of list NETFILTER
> Subject: Re: PPTP Extension
>
>
> >
> > I *think* each protocol would need to provide a `is_tuple_equal(t1,
> > t2, dir)' method: the default would be `ip_ct_tuple_equal(tuple,
> > &i->tuple)', but PPTP's would only compare the source:
> >
> > if (t1->src.ip != t2->src.ip || t1->dst.ip != t2->dst.ip)
> > return 0;
> > return t1->src.u.pptp.id == t2->src.u.pptp.id;
> >
> > Want to me whip up a quick patch (I have no way of testing, so someone
> > else would need to do some minor kernel hacking to finish it)?
> >
>
>
> This sounds good, Rusty. I'm keen to test.
>
> There are two cases that I'm seeing though.
>
> 1. I'm on a SNAT'ed network talking to a pptp server.
>
> 2. I'm talking to a pptp server which is behind a firewall and
> the firewall
> needs to DNAT.
>
> Does your patch handle both cases?
>
> Regards
>
> John
>