GRE packets lost at second pptp connection attempt ?

[scott]

Hi,

I have a win 98 clinet connecting to a PPTP server via the following:

98
v
router
v
router > 2k clinet
v
firewall
v
pptp host.

I seem to have an intermitant problem whereby the first connection works but
when i disconnect and attempt a reconnection GRE packets dont reach the
firewall. On the first conneciton the firewall reports PPTP and GRE. On the
second attempt they only report PPTP i.e GRE never gets this far.

As shown above, i have a 2k clinet outwith the firewall but within my
network. This machine can use PPTP to connect to server 100% of the time.

Thanks for any information.
Scott.

 

[scott]

From internal win 2k clinet infront of firewall, when i connect i get these
logs:

1|02/10/2004 16:05:39 |192.168.2.2 |192.168.1.199
|ACCESS FORWARD
Firewall rule match: GRE (W to L, rule:2)

2|02/10/2004 16:05:39 |192.168.2.2 |192.168.1.199
|CHECK NEXT RULE
Firewall rule NOT match: GRE (W to L, rule:1)

3|02/10/2004 16:05:39 |192.168.2.2:1126 |192.168.1.199:1723
|ACCESS FORWARD
Firewall rule match: TCP (W to L, rule:2)

4|02/10/2004 16:05:39 |192.168.2.2:1126 |192.168.1.199:1723
|CHECK NEXT RULE
Firewall rule NOT match: TCP (W to L, rule:1)


Why am i getting the text "CHECK NEXT RULE" displyed ?

I think this may why external IPs cant connect via PPTP via this firewall
(or can very rarly do this). Its like sometime it will work and other times
it bounces GRE and PPTP.

Thanks
Scott.