Properly stuck getting a PPTP connection to work. Can someone please assist?

[Bloke at the pennine puddle (Replace n.a.v.d with]

The server I'm trying to VPN (PPTP) to is a Windows 2003 server.

Here is the basic config....

Client = 172.16.0.1
Client OS = XP Professional
Client's NAT router = 172.16.0.254

Target router has port 1723 TCP and UDP forwarded to the server's IP
of 192.168.0.250.

In active directory the account being used to sign-in has the `Allow
access` option selected under the `Dial-in` tab, so RAS policies
should not be in effect.

RRAS is enabled on the W2K3 server as a router and RRAS server. four
PPTP and L2TP ports are available, but for now only PPTP is being
used.

I'm allowing RRAS to assign eight IP addresses (as DHCP not enabled
yet, on purpose, as another DHCP server on the LAN) and not use DHCP.

Authentication methods on the RRAS that are enabled are `MS-CHAP v2`
and `MS-CHAP`. The client must authenticate. RADIUS is not used and
the client (connecting XP Pro box) will refuse to connect without
establishing an encrypted connection.

Advances security on the XP Pro client is set to the same as the
server. To try authenticate using either `MS-CHAP v2` or `MS-CHAP`.

Now, the VPN connectiod seems to open a connection to the target
router and I know that the connection works because I'm using VNC to
remote control the target server. Seems to me that something on the
W2K3 server is now playing.

Can someone help me as I seem to be blind to what I'm doing wrong.

 

[Bloke at the pennine puddle (Replace n.a.v.d with]

DOH! Sussed it. I forgot to turn on PPTP pass-through on my router.
]=:

Well, no-one said I was perfect. I ad PPTP turned off 'cos I was not
using it.

"Bloke at the pennine puddle (Replace n.a.v.d with vodafone.net.)"

 

[Marc Reynolds [MSFT]]

Yes, you need to allow IP Protocol 47 (GRE) which many routers define as
PPTP Pass through.

--

Thanks,
Marc Reynolds
Microsoft Technical Support

This posting is provided "AS IS" with no warranties, and confers no rights.


"Bloke at the pennine puddle (Replace n.a.v.d with vodafone.net.)"

DOH! Sussed it. I forgot to turn on PPTP pass-through on my router.
]=:

Well, no-one said I was perfect. I ad PPTP turned off 'cos I was not
using it.

"Bloke at the pennine puddle (Replace n.a.v.d with vodafone.net.)"

The server I'm trying to VPN (PPTP) to is a Windows 2003 server.

Here is the basic config....

Client = 172.16.0.1
Client OS = XP Professional
Client's NAT router = 172.16.0.254

Target router has port 1723 TCP and UDP forwarded to the server's IP
of 192.168.0.250.

In active directory the account being used to sign-in has the `Allow
access` option selected under the `Dial-in` tab, so RAS policies
should not be in effect.

RRAS is enabled on the W2K3 server as a router and RRAS server. four
PPTP and L2TP ports are available, but for now only PPTP is being
used.

I'm allowing RRAS to assign eight IP addresses (as DHCP not enabled
yet, on purpose, as another DHCP server on the LAN) and not use DHCP.

Authentication methods on the RRAS that are enabled are `MS-CHAP v2`
and `MS-CHAP`. The client must authenticate. RADIUS is not used and
the client (connecting XP Pro box) will refuse to connect without
establishing an encrypted connection.

Advances security on the XP Pro client is set to the same as the
server. To try authenticate using either `MS-CHAP v2` or `MS-CHAP`.

Now, the VPN connectiod seems to open a connection to the target
router and I know that the connection works because I'm using VNC to
remote control the target server. Seems to me that something on the
W2K3 server is now playing.

Can someone help me as I seem to be blind to what I'm doing wrong.