News: This forum is now permanently frozen.
Pages: [1]
Topic: Can VPN clients (PPTP) see each other?  (Read 3608 times)
« on: April 01, 2008, 17:19:34 »
Weasel *
Posts: 8

Say - if two XP clients connect to my m0n0wall using PPTP VPN service in m0n0wall, can they access each others resources - like shares on the two XP workkstations.

Or can they only access rescources on the LAN m0n0wall give access to?

I am aware of XP firewall - and you should consider that turned off in this senario  Wink

Best Regards
Weasel
« Reply #1 on: April 03, 2008, 12:31:37 »
Weasel *
Posts: 8

Does'nt anyone know anything about this  Huh Undecided

Even a theory would be a place to start !?!
« Reply #2 on: April 03, 2008, 18:25:17 »
fredg
Guest

It wouldn't be a private network (as in VPN) if clients could see each other's resources.
« Reply #3 on: April 03, 2008, 21:43:14 »
ChainSaw
Guest

I just tested this scenario and was able to establish a TCP connection between two PPTP clients that were connected via sererate ISPs.  I bet in the time it took you to make this post you could have tested this yourself.   Smiley

CS... 
« Last Edit: April 03, 2008, 21:48:58 by ChainSaw »
« Reply #4 on: April 04, 2008, 10:20:56 »
Weasel *
Posts: 8

I just tested this scenario and was able to establish a TCP connection between two PPTP clients that were connected via sererate ISPs.
Ok... thanks a lot for trying that!

Quote
  I bet in the time it took you to make this post you could have tested this yourself.   Smiley
The case is that i have a netvork, where clients NOT should be able to see each other!
I did test it, but could not get connection - and was happy, but then i got spooked by a friend that argued for that it had to be possible... so now im just trying to get third opinions and documentation.
« Reply #5 on: April 04, 2008, 11:32:55 »
ChainSaw
Guest

No problem.  Glad to help.  I thought they would be able to talk to each other but wasn't 100% sure.  Also, when I get a chance, I'll see if a PPTP rule can block this traffic.

CS...
« Last Edit: April 04, 2008, 11:52:51 by ChainSaw »
« Reply #6 on: April 04, 2008, 16:24:49 »
Tgellan *
Posts: 10

Hi,

It just depends on the rules you configure for the PPTP. I'd setup something like this:

Allow PPTP to WAN
Allow PPTP/specific IP to INTERNAL-Server
Disallow PPTP to Any  (all the rest)

Should do the trick ;-)

Just pay attention, that if you assign dedicated IPs to users, these might be outside the PPTP range. So consider setting the 2. rule like this:
Disallow LAN to ANY

Any of these rules are considered being on the PPTP page, of course :-D

Hope this helps
Marco
« Reply #7 on: April 05, 2008, 10:16:09 »
Weasel *
Posts: 8

I will try the different ideas  Smiley

Thanks a lot !
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines