PPTP forwarding only supports first LAN
Migrated from: https://tracker.clearos.com/view.php?id=5911
Reported by: Peter Baldwin
There's a special block of code to handle PPTP forwarding:
for __, ifn in pairs(LANIF) do
if if_exists(ifn) then
ip, netmask, network, prefix = GetInterfaceInfo(ifn)
for ___, ifn_wan in pairs(WANIF) do
iptables("filter",
string.format("-A FORWARD -i %s -o %s -p %d -d %s -j %s",
ifn_wan, ifn, r_proto, r_addr, FW_ACCEPT))
iptables("filter",
string.format("-A FORWARD -i %s -o %s -p tcp -d %s --dport %s -j %s",
ifn_wan, ifn, r_addr, r_port, FW_ACCEPT))
end
-- XXX: Can only have one of these...
break
end
The PPTP forwarding is only done on the first LAN and then the firewall bails. Is this required? Can the firewall add the relevant rules for all LANs?
Developer comment:
The bug may become a WontFix as it was not necessarily intended to carry PPTP VPN's forward into ClearOS 8.x