Firewall/NAT

Hi all.
This is the first time for me in this forum. I write because I was trying to do some tests with monowall in order to connect to my home PC from my office PC.
In particular in M0n0wall release 1.3b11 I tried to configure a rule in order to filter an IP address range for the incoming calls to the PPTP gate (WAN port 1723). Unfortunately this rule seems not to work, since even IPs out of the assigned IP address range can complete PPTP login procedure.
Someone could help me?
Thanks for your attention. Best regards.
Aldo Dalla Via

From memory of another post somewhere on the forum I believe the with the PPTP server enabled there is an automatic built in rule that allows PPTP traffic to the box.  If you look at the status.php page on your Mono box you will see the lines

Code:

# PPTP rules
pass in quick proto gre from any to x.x.x.x keep state group 200
pass in quick proto tcp from any to x.x.x.x port = 1723 keep state group 200

These come about half way down the page.
I think that there is a way to modify these, however, I can't remember what it is.  I'm sure that someone will be along to enlighten us.

https://www.grc.com/passwords.htm

use a 63 character PPTP password from the above URL and you won't need to worry about the client's IP.

CS...