PPTP from a client with Hide-NAT

olasoji · #1 (**permalink**) 2007-12-06

I have NG AI R54.

PPTP connection to a VPN device from an internal client hiding behind the FW's public IP address does not work.

I have 2 rules to allow pptp services (pptp-tcp and gre) from internal to the VPN device and from the VPN device to the internal client.

All traffic relating to pptp and the devices in question were allowed. Also, there are no dropped packets from the log and yet the pptp connection has not been successful.

Will anyone know why this has not been working? I will appreciate any help please. Many thanks in advance

melipla · #2 (**permalink**) 2007-12-06

Do you see any drops using the PPTP host as the source?

olasoji · #3 (**permalink**) 2007-12-06

Unfortunately no. There was no drop using the pptp host as source.

Cheers

mcnallym · #4 (**permalink**) 2007-12-07

Update to NGX and under smartdefense enable the VPN Protocol enforcement for PPTP. This is a known issue and that is what needs to be done to make it work.

canghel · #5 (**permalink**) 2007-12-31

Quote:

Originally Posted by olasoji

I have NG AI R54.

PPTP connection to a VPN device from an internal client hiding behind the FW's public IP address does not work.

I have 2 rules to allow pptp services (pptp-tcp and gre) from internal to the VPN device and from the VPN device to the internal client.

All traffic relating to pptp and the devices in question were allowed. Also, there are no dropped packets from the log and yet the pptp connection has not been successful.

Will anyone know why this has not been working? I will appreciate any help please. Many thanks in advance

I might be wrong, but the only workaround is to use static NAT.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode