NetworkManager pptp vpn and routes?

Tue Jul 14 21:08:10 UTC 2009

Arthur Pemberton wrote:
> 
> On Mon, Jul 13, 2009 at 4:05 AM, Mike Cloaked<mike.cloaked at gmail.com>
> wrote:
>>
>> Arthur Pemberton wrote:
>>>
>>> As I report I reported here:
>>> https://bugzilla.redhat.com/show_bug.cgi?id=461420#c8
>>>
>>> I could not get custom routes to work with NM-pptp either.
>>>
> 

I finally found the magic recipe to get the vpn working exactly as I want
it.

1) The vpn was be set up by right clicking NetworkManager
(NetworkManager-pptp is installed as is pptp)
The VPN gateway is set as the ip address for the vpn with my normal username
for authentication
2) The Advanced tab must include MPPE and all the authentication
methods are checked.
3) Under IPv4 settings I used Automatic (VPN) addresses only and
included my home DNS server address (which has split DNS) and the
search domain as york.ac.uk (which is the domain at work)
4) Within the IPv4 tab clicking the routes button opens a new window which I
add
144.32.0.0 with netmask 255.255.0.0 (i.e. the ip range I am interested in at
work)
172.16.0.0 with netmask 255.255.0.0 (this is the point to point ip address
in the tunnel)
"Ignore automatically obtained routes" is checked and also "Use this
connection only for resources on its network" is also checked.

With these settings I have exactly the behaviour I now need as in my
original posting. i.e. all traffic except work machines goes out via my
normal isp, but work packets go through the tunnel.

I also made sure that my firewall allows ppp0 and type 47 packets through -
and I am running with selinux enforcing.

My local named is modified to run split dns for local LAN addresses from my
home dns server and 144.33 addresses from the university dns.

It took a lot of fiddling to find the right recipe and it would be nice to
have a tutorial explaining how to do these things on the net somewhere. 
However I did run searches quite extensively and did not find a how-to or
guide that explained the detail in a form that I could understand!
-- 
View this message in context: http://www.nabble.com/NetworkManager-pptp-vpn-and-routes--tp24457880p24487854.html
Sent from the Fedora List mailing list archive at Nabble.com.