[6.x patchset] Ipfw nat and libalias modules
Iasen Kostov
tbyte at otel.net
Wed May 3 11:06:32 UTC 2006
On Tue, 2006-05-02 at 12:04 -0400, Scott Ullrich wrote:
> On 5/2/06, Iasen Kostov <tbyte at otel.net> wrote:
> [snip]
> > Btw what is the status of the multi-session to the same
> > point PPTP NAT (e.g call ID tracking) ?
>
> PF's NAT has the same problem. We have this come up quite often on
> pfSense where someone wants to make multiple connections through the
> firewall to a target PPTP server. After the first connection PF
> seems to loose track of the (what your calling ID tracking I suppose)
> in GRE and then no new connections can be created to that particular
> PPTP server. Works fine if the second person connects to a different
> server however.
Yep but corporate clients tend to connect to the same server :).
I've asked this question becouse I've wrote a pptp load balancer some
time in the past and could possibly use it as start point for pptp nat
(because the balancer was doing exactly this tracking of the call IDs
for the connections to the pptp servers were comming from the same IP of
the balancer's machine and there were multiple connections).
More information about the freebsd-net
mailing list