To allow PPTP to work through the PIX you need to allow GRE and TCP 1723
inbound. You have the TCP 1723 covered with the statement:
conduit permit tcp host x.y.z.w range 0 65535 any (not a good idea to
open all ports) ;)
You need to add:
conduit permit gre host x.y.z.w any
Rich Pitcock
-----Original Message-----
From: johnny gonzalez
Sent: Tue 7/3/2001 10:42 AM
To: Lista de firewalls
Cc:
Subject: VPNS.
Hi.
Server-----INTERNET-----ROUTER------PIX 525 cisco------WIN98
I need make PPTP with WIN98 and Server in Internet.
I probe PPTP with WIN98 between the ROUTER and the PIX 525. Its
work
correctly. But inside the pix in the LAN, no work.
the Win98 inside the PIX.
ip real= x.y.z.w
GW =ip the pix.
nat (intf2) 0 148.243.101.2 255.255.255.255 0 0
NOTE: I have NO NAT to the WIN98.
conduit permit tcp host x.y.z.w range 0 65535 any
conduit permit udp host x.y.z.w range 0 65535 any
I probe DNS, WEB, SMTP FTP, in this model, everiting work
correctly.
But with WIN98 PPTP no work.
What is the problem?
The PIX need configured?
Thanks.
--
Johnny Gonzalez Dominguez
Ingenieria de Software
Telecable Morelos
Cuernavaca, Morelos
Tel. (52)(7)3292497
[EMAIL PROTECTED]
[EMAIL PROTECTED]
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
winmail.dat
