PDA

Click to See Complete Forum and Search --> : VPN Connection Trouble with Windows Server 2003

Ozz
07-26-2006, 05:37 AM
Hello, I once again need help.

I have Server 2003, an arsinal of books, a pair of Linksys APs, and a month long headache. (yes if you are wondering I am in DEEP water for my knowledge) I can
establish a VPN on my LAN but not outside of that. I have the port forwarding set and it seems to connect but not athenticate my name/pass. I have checked and double checked settings and security against the books/forums with no luck.

I am surly leaving out an important piece of info to crack this, and I have searched (A LOT!) around the forum for answers. If anyone can throw me a bone I will be in your debt.

Ozz:confused: :mad: :(
cszeto
07-26-2006, 07:36 AM
http://forums.practicallynetworked.com/showthread.php?t=6534
Sooner Al
07-26-2006, 10:12 AM
If your running the PPTP VPN server on your W2K3 Server box then keep on mind you need both TCP Port 1723 forwarded/opened on any firewall/router the server is behind AND the firewall/router must be able to pass GRE Protocol 47 traffic. Some devices call that PPTP Pass Through. You can run a test detailed on this page to verify all of that works. See the PPTP Ping and VPN Traffic sections. Note the test client must be external to your LAN in order to run the test correctly...

http://www.microsoft.com/technet/community/columns/cableguy/cg0105.mspx

FWIW, in my experience I have had mixed results with consumer grade routers passing GRE Protocol 47 traffic. With my old Linksys BEFSR41 (v1) it came down to the right firmware release. Some releases worked while some did not. With my current Buffalo WBR-G54 I can not pass GRE Protocol 47 traffic no matter what firmware release I use. With an old Network Everywhere NR041 GRE Protocol 47 traffic works as advertised.

If the test fails you might check with Linksys to see if there is a newer version of the firmware that may fix GRE Protocol 47 issues.

If you can't get this to work with your existing router then you may need to...

1. Replace the router with a device that is known to pass PPTP VPN traffic.
2. Purchase a VPN end-point type router.
3. Use another tool like OpenVPN, SSL-Explorer or Secure Shell (SSH).

Personally, from a Small Office/Home Office (SoHo) user perspective, I find SSH very easy to setup and use.

Good luck...