VPN behind adsl router

G

Guest

Dear
I setup my PPTP microsoft VPN, with client that connect to my server via windows client
I enabled the port redierction (1723) and PPTP pass trough (My DSL router is a DSL 604+) chek box active
I open the firewall for the port 172

When I put my server on the DMZ port, the clients can log on my intranet but when I put it behind the NAT firewall router the clients received an error 721

I phone the support that said me that my router let pass Gre protocol (IP 47

Do you have an idea about my problem
Thank's for your hel

Regadr

O. CARRE
 
B

Bill Grant

Setting PPTP pass-through mode on the router should enable GRE.

Exactly how is your LAN configured? A simple diagram helps. eg

Internet
|
public IP
router
IP?
|
RRAS
IP? default gateway ? (one or two nics?)

ocarre said:
Dear,
I setup my PPTP microsoft VPN, with client that connect to my server via windows client.
I enabled the port redierction (1723) and PPTP pass trough (My DSL router
Click to expand...
is a DSL 604+) chek box active.
I open the firewall for the port 1723

When I put my server on the DMZ port, the clients can log on my intranet
Click to expand...
but when I put it behind the NAT firewall router the clients received an
error 721.
 
G

Guest

interne

Public IP
route
IP : 192.168.0.

IP : 192.168.0.100 GW : 192.168.0.
RRA
IP : 10.0.0.1 GW : non

LA
IP : 10.0.0.x GW : 10.0.0.

Each IP are in a different network card
I've got a NAT behind the RRAS server with a static route tha t said 0.0.0.0 0.0.0.0 192.168.0.1 (route all to internet
That works fin
 
B

Bill Grant

What is wrong with putting the server on the DMZ port? That is basically
how you have configured your network. The RRAS server is the default gateway
of your LAN. The 10.0.0 subnet is your private LAN and the 192.168.0
subnet is acting as a DMZ.

To use the server as a remote access server directly on the LAN, you
would use the router as the default gateway and set up the server with one
NIC. Your private LAN would be the 192.168.0 subnet and you would forward
PPTP from the router to the server's 192.168.0 address.

ocarre said:
internet
|
Public IP
router
IP : 192.168.0.1
|
IP : 192.168.0.100 GW : 192.168.0.1
RRAS
IP : 10.0.0.1 GW : none
|
LAN
IP : 10.0.0.x GW : 10.0.0.1

Each IP are in a different network card.
I've got a NAT behind the RRAS server with a static route tha t said
Click to expand...
0.0.0.0 0.0.0.0 192.168.0.1 (route all to internet)
 
G

Guest

Thank's bill for your help.

I'll put it on the DMZ port, but do you have a doc. about how to secure a PPTP VPN ?

Regard
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Linksys DSL Router 1
vpn error 800 then 721 then connection ? 1
PPTP Pass through for VPN not on RRAS 3
VPN unable to connect (error 721) 2
pptp win2k sp4 error 650 and 721 2
VPN Error 721 4
vpn & DI-604 ethernet broadband router 1
Windows 2003 RRAS 4

Top