You must open a 'conduit permit gre any any', or similar, in addition to the
'conduit permit tcp a.b.c.d eq 1723 any', or similar.
This is actually documented in the PIX documentation, (p5-15 in the
documentation I have... Command Reference, look under the 'conduit' command
and find where it mentions PPTP).
=========================
Paul H. Gracy
[EMAIL PROTECTED]
phone: 404 705 2873
#include <std.disclaimer>
=========================
> -----Original Message-----
> From: Don Kelloway [SMTP:[EMAIL PROTECTED]]
> Sent: Friday, April 23, 1999 6:38 AM
> To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Subject: Re: MS PPTP and PIX firewall
>
> Opening port TCP 1723 is not enough to allow PPTP to pass through. Does
> PIX
> have the ability to support protocol 47 GRE (Generic Routing
> Encapsulation)?
>
> Lastly, insure that you've applied all the hotfixes for PPTP as well as
> have
> installed the latest DUN version for the clients. This will address the
> insecurity concerns...
>
> Best Regards, Donald Kelloway
> http://www.commodon.com
>
> -----Original Message-----
> From: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
> Date: Friday, April 23, 1999 3:29 AM
> Subject: MS PPTP and PIX firewall
>
>
> >Has anyone run into problems using Microsoft PPTP along with PIX
> firewall.
> >We have the port open on the firewall but PPTP only works internally not
> >externally. We have the RAS server setup along with the firewall but
> were
> >unable to connect.
> >
> >Just wondering if has heard of any issues regarding MS PPTP along with
> PIX.
> >(I know its a unsecure VPN but its free)
> >
> >Thanks
> >-
> >[To unsubscribe, send mail to [EMAIL PROTECTED] with
> >"unsubscribe firewalls" in the body of the message.]
> >
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
