I ran into that same problem with MS PPTP and a remote office. And yes it was all in the 1 IP Address and multiple vpn clients. My work around was putting in a LAN-to-LAN IPSec tunnel, your work around could be more static IP Addresses, depending on your costs. You could also try a Linux server as their gateway, I never ran into problems with multiple vpn users using that as their gateway
Michael Pathfire [EMAIL PROTECTED] -----Original Message----- From: Simon Spurrell, T-GR [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 01, 2002 4:26 AM To: [EMAIL PROTECTED] Subject: [FW-1] Microsoft PPTP across address translation router I have the following situation: A Remote Office with 1 to 4 users want to connect with laptop via PPTP Remote Access VPN to a Microsoft PPTP VPN server. Remote office have an Office Grade ADSL router with address translation. One dynamically assigned IP Address for the ADSL router. In the main office we have a checkpoint firewall with a DMZ. The Microsoft VPN server has one network card in the DMZ and one network card on the LAN. We use the IP Address of the DMZ network card for the VPN tunnel configuration on the clients. The problem is only one (sometimes two) clients from the remote office are able to connect to the Microsoft VPN server. If more than this try to connect, one clients VPN tunnel is dropped. I think it is a problem with the ADSL address translation router. Has anyone had this problem before? When I called the ADSL company they said, "this is the case because the ADSL router only has one internet routable IP Address". The ADSL ISP are able to give me one fixed IP on request. They might be able to replace the router. They are not able to give me a subnet of real IP's. Could anyone advise. Thanks. Simon ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
