User Tools

Site Tools


doc:howto:vpn.nat.pptp

PPTP NAT Traversal

For an overview over all existing Virtual private network (VPN)-related articles in the OpenWrt wiki, please visit vpn.overview

(This information still needs to be verified!)

This is how to get a stable solution for establishing PPTP tunnels from one or multiple LAN clients to one or multiple WAN servers passing through OpenWrt's network address translation (NAT). Thus this is often referred to as "PPTP pass through".

Background

PPTP utilizes the GRE (Generic Routing Encapsulation) protocol for its point-to-point tunnel. As a pure IP protocol GRE uses only IP addresses but no port numbers giving the router's NAT a tough time to track such a connection. In its base configuration OpenWrt Backfire is able to NAT a single PPTP connections but not multiple such connections concurrently. It is also unreliable when trying to establish consecutive single PPTP connections from different LAN clients in rapid succession. This limitation can be lifted (as far as I could make out so far) by installing the following package.

Required Packages

Packages Name Size in Bytes Description
kmod-ipt-nathelper-extra 55770 Extra Netfilter (IPv4) Conntrack and NAT helpers

Installation

opkg

opkg install kmod-ipt-nathelper-extra
You should now be able to use multiple PPTP connections from LAN to WAN at the same time.

doc/howto/vpn.nat.pptp.txt · Last modified: 2013/10/28 08:31 by lorema