Re: VPN From W2K/Pro to W2K Server Doesn;t Work Through Firewall

From: Meron Lavie (lavie@net2vision.net.il)
Date: 06/25/02 

From: "Meron Lavie" <lavie@net2vision.net.il>
Date: Wed, 26 Jun 2002 00:22:54 +0300

Steven,

I tried specifying pptp, but it didn't help.

I have all outgoing traffic allowed, and also allow 47 (I enabled logging
and see that port 1723 and protocol 47 are succesfully connecting).

Any other ideas? Has anyone ever succeeded in connecting a VPN client in a
NATted LAN to an external VPN server? 

--
Meron Lavie
"Steven L Umbach" <n9rou@attbi.com> wrote in message
news:MY3S8.319039$cQ3.17382@sccrnsc01...
>        Are you trying to use l2tp or pptp? L2tp for the most part does not
> work with NAT. In your vpn client connectoid properties select pptp as
> server type instead of "auto" - W2K will try l2tp first by default
(assuming
> W2K vpn server is set up to allow pptp connections). If using pptp your
> firewall has to allow protocol passage of port 1723 and protocol 47
gre. ---
> Steve
>
>
> "Meron Lavie" <lavie@net2vision.net.il> wrote in message
> news:urZ42DIHCHA.2364@tkmsftngp11...
> > I am trying to access a remote server via VPN.
> >
> > The server is W2K/SP2 running ISA.
> >
> > My local computer is W2K/Pro with SP2, on a LAN whose gateway is Redhat
> > Linux v7.0 running an IPCHAINS-based firewall which also performs
> > NATting/Forwarding. The Linux accesses the Internet through ADSL.
> >
> > When I try to connect to the remote server, I get "Verifying Username
and
> > Password", but after about 15 secs it fails with message 721. The
firewall
> > log shows no violations.
> >
> > Everyone else succeeds in accessing from their ISP's dialup. I am the
> first
> > person to try to access it from an external LAN.
> >
> > What am I doing wrong?
> >
> > --
> > TIA
> > Meron Lavie
> > lavie@net2vision.net.il
> > NOTE: THERE IS NO "2" IN MY REAL EMAIL ADDRESS: ANTI-SPAM!!!
> >
> >
> >
> >
>
>

Relevant Pages

  • Re: Bizzare ISA2004 VPN Issues, Please help
    ... If you use the Server Publish rule to publish an internal PPTP server to the internet, a socket on TCP 1723 port of ISA external ... you could still setup PPTP server on ISA and let it listen on TCP 1723. ... | - I disabled VPN client access from within ISA2004. ...
    (microsoft.public.isa)
  • Re: Outlook RPC over HTTP
    ... Now its checked it does not connect VPN ... In case it matters i have gone into IIS on the Server and checked the ... Proxy Setttings: ... mutually authenticate the sesssion when connecting with SSL: ...
    (microsoft.public.windows.server.sbs)
  • Re: Outlook RPC over HTTP
    ... Now its checked it does not connect VPN or otherwise. ... In case it matters i have gone into IIS on the Server and checked the server ... exchange but I think it is connecting over TCP/IP. ... Proxy Setttings: ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN Drops every 9 minutes
    ... Her office is running server 2003 for remote access behind a sonicwall ... Is the PPTP server terminated in the Sonicwall or in the Windoze 2003 ... Same thing the vpn drops every 9 minutes. ... "Event Viewer" for clues as to which end initiated the disconnects and ...
    (alt.internet.wireless)
  • Re: VPN Drops every 9 minutes
    ... Her office is running server 2003 for remote access behind a sonicwall ... Is the PPTP server terminated in the Sonicwall or in the Windoze 2003 ... Same thing the vpn drops every 9 minutes. ... "Event Viewer" for clues as to which end initiated the disconnects and ...
    (alt.internet.wireless)