Добрый день Подскажите, как побороть, из локальной сети не могу подключится к VPN PPTP серверу который находится в другом месте.
# Generated by iptables-save v1.6.0 on Mon Sep 30 23:50:13 2019
*mangle
:PREROUTING ACCEPT [4899905:5488213642]
:INPUT ACCEPT [2121079:3031077122]
:FORWARD ACCEPT [2776542:2456460297]
:OUTPUT ACCEPT [1451601:85050313]
:POSTROUTING ACCEPT [4228143:2541510610]
-A FORWARD -o ppp0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m tcpmss --mss 1400:65495 -j TCPMSS --clamp-mss-to-pmtu
COMMIT
# Completed on Mon Sep 30 23:50:13 2019
# Generated by iptables-save v1.6.0 on Mon Sep 30 23:50:13 2019
*nat
:PREROUTING ACCEPT [42:3044]
:INPUT ACCEPT [14:1079]
:OUTPUT ACCEPT [3:221]
:POSTROUTING ACCEPT [0:0]
-A POSTROUTING -o ppp+ -j MASQUERADE
COMMIT
# Completed on Mon Sep 30 23:50:13 2019
# Generated by iptables-save v1.6.0 on Mon Sep 30 23:50:13 2019
*filter
:INPUT ACCEPT [11:3834]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [69:9064]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i ppp+ -j ACCEPT
-A INPUT -p tcp -m tcp --dport 1723 -j ACCEPT
-A INPUT -p gre -j ACCEPT
-A FORWARD -i ppp+ -o ppp+ -j ACCEPT
-A FORWARD -j ACCEPT
-A OUTPUT -o ppp+ -j ACCEPT
-A OUTPUT -p gre -j ACCEPT
COMMIT
# Completed on Mon Sep 30 23:50:13 2019
23:56:25.513179 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [S], seq 3863674686, win 29200, options [mss 1452,sackOK,TS val 3677442620 ecr 0,nop,wscale 7], length 0
23:56:25.514018 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua.45700: Flags [S.], seq 91726336, ack 3863674687, win 14280, options [mss 1440,sackOK,TS val 1180006 ecr 3677442620,nop,wscale 3], length 0
23:56:25.518400 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [.], ack 1, win 229, options [nop,nop,TS val 3677442624 ecr 1180006], length 0
23:56:25.518980 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [P.], seq 1:157, ack 1, win 229, options [nop,nop,TS val 3677442624 ecr 1180006], length 156: pptp CTRL_MSGTYPE=SCCRQ PROTO_VER(1.0) FRAME_CAP(AS) BEARER_CAP(DA) MAX_CHAN(65535) FIRM_REV(1) HOSTNAME(local) VENDOR(cananian)
23:56:25.519781 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua.45700: Flags [.], ack 157, win 1919, options [nop,nop,TS val 1180007 ecr 3677442624], length 0
23:56:25.521458 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua.45700: Flags [P.], seq 1:157, ack 157, win 1919, options [nop,nop,TS val 1180007 ecr 3677442624], length 156: pptp CTRL_MSGTYPE=SCCRP PROTO_VER(1.0) RESULT_CODE(1) ERR_CODE(0) FRAME_CAP(S) BEARER_CAP() MAX_CHAN(0) FIRM_REV(1) HOSTNAME(MikroTik) VENDOR(MikroTik)
23:56:25.529323 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [.], ack 157, win 237, options [nop,nop,TS val 3677442635 ecr 1180007], length 0
23:56:26.517852 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [P.], seq 157:325, ack 157, win 237, options [nop,nop,TS val 3677443625 ecr 1180007], length 168: pptp CTRL_MSGTYPE=OCRQ CALL_ID(33460) CALL_SER_NUM(0) MIN_BPS(2400) MAX_BPS(10000000) BEARER_TYPE(Any) FRAME_TYPE(E) RECV_WIN(3) PROC_DELAY(0) PHONE_NO_LEN(0) PHONE_NO() SUB_ADDR()
23:56:26.519382 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua.45700: Flags [P.], seq 157:189, ack 325, win 2053, options [nop,nop,TS val 1180107 ecr 3677443625], length 32: pptp CTRL_MSGTYPE=OCRP CALL_ID(16) PEER_CALL_ID(33460) RESULT_CODE(1) ERR_CODE(0) CAUSE_CODE(0) CONN_SPEED(100000) RECV_WIN(100) PROC_DELAY(0) PHY_CHAN_ID(0)
23:56:26.520811 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [.], ack 189, win 237, options [nop,nop,TS val 3677443628 ecr 1180107], length 0
23:56:26.521374 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 1, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:26.522476 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 1, ack 1, length 39: LCP, Conf-Request (0x01), id 1, length 21
23:56:26.522686 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 2, ack 1, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:27.534097 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 3, ack 1, length 39: LCP, Conf-Request (0x01), id 2, length 21
23:56:29.115886 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 4, ack 1, length 39: LCP, Conf-Request (0x01), id 3, length 21
23:56:29.525868 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 2, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:29.527026 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 5, ack 2, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:31.159066 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 6, ack 2, length 39: LCP, Conf-Request (0x01), id 4, length 21
23:56:32.512611 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 3, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:32.513654 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 7, ack 3, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:34.215789 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 8, ack 3, length 39: LCP, Conf-Request (0x01), id 5, length 21
23:56:35.521959 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 4, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:35.523054 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 9, ack 4, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:38.519547 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 5, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:38.520676 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 10, ack 5, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:38.751233 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 11, ack 5, length 39: LCP, Conf-Request (0x01), id 6, length 21
23:56:41.523676 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 6, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:41.524722 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 12, ack 6, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:44.529746 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 7, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:44.530793 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 13, ack 7, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:45.492165 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 14, ack 7, length 39: LCP, Conf-Request (0x01), id 7, length 21
23:56:47.525199 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 8, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:47.526390 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 15, ack 8, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:50.558649 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 9, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:50.559676 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 16, ack 9, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:53.536624 IP 233.82.PPPoE.fregat.ua > xxx.xxx.xxx.xxx: GREv1, call 16, seq 10, length 36: LCP, Conf-Request (0x01), id 1, length 22
23:56:53.537743 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 17, ack 10, length 34: LCP, Conf-Reject (0x04), id 1, length 16
23:56:56.190911 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua: GREv1, call 33460, seq 18, ack 10, length 39: LCP, Conf-Request (0x01), id 8, length 21
23:56:56.566375 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [P.], seq 325:341, ack 189, win 237, options [nop,nop,TS val 3677473658 ecr 1180107], length 16: pptp CTRL_MSGTYPE=CCRQ CALL_ID(33460)
23:56:56.567396 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua.45700: Flags [F.], seq 189, ack 341, win 2053, options [nop,nop,TS val 1183112 ecr 3677473658], length 0
23:56:56.638968 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [F.], seq 341, ack 189, win 237, options [nop,nop,TS val 3677473658 ecr 1180107], length 0
23:56:56.639523 IP 233.82.PPPoE.fregat.ua.45700 > xxx.xxx.xxx.xxx: Flags [.], ack 190, win 237, options [nop,nop,TS val 3677473688 ecr 1183112], length 0
23:56:56.639696 IP xxx.xxx.xxx.xxx > 233.82.PPPoE.fregat.ua.45700: Flags [.], ack 342, win 2053, options [nop,nop,TS val 1183119 ecr 3677473658], length 0
