Block traffic from PPTP Clients to all LAN adresses but one…



  • Hi all,

    Here is my issue:
    I wan't to block all traffic from my PPTP Clients to all LAN adresses except one

    My Setup:

    PPTP
    Server adress: 192.168.35.1
    Remote address range: 192.168.35.100 (+80 adresses)

    LAN
    192.168.32.0/24

    and I wan't a firewall rule to permit traffic from any of these adresses only to 192.168.32.3

    How can I create firewall rule(s) to do accomplish this?



  • Ok, so I solved that by making a Alias for my PPTP Server adress (192.168.35.1) and the IP adress: 192.168.32.3
    and making one single permit rule for any traffic to these from PPTP Clients.

    But this resulted in that I loose all internet connectivity on my client.
    I do not want clients to access internet through the PPTP but the clients should use their normal connection for that

    But if I (in windows) unclick the "use default gateway on remote network", under PPTP connection –> network IPv4 Properties --> Advanced, the client cannot connect to 192.168.35.1 or 192.168.35.3 anymore.

    Is there some way to solve this?