Microsoft PPTP, doublecheck my config

Unanswered Question
Feb 1st, 2007

I've got a 2801 router configured for PAT. Behind the PAT, one of the clients is trying to connect to a remote Microsoft PPTP vpn connection. It connects fine, but after a period of time, dies. I want to make sure that my config isn't killing the vpn. I don't think that it is. I would appreciate a quick doublecheck. specifically I want to know if my acl in my nat statement is sufficient.

I see other posts speaking of allowing GRE and tcp port 1723, but that is for client on the outside of the PAT and server on the inside. This is sort of the opposite.

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Daniel Voicu Sun, 02/04/2007 - 02:54

Hi,

When using PPTP, you are initiating a connection on TCP 1723, but then the return traffic from server is a GRE tunnel.

The connection might die for a existing user when other user wants to connect from the same LAN using the PAT.

Have a look at this configuration guide, it might help, rate if it does:

http://cisco.com/en/US/tech/tk827/tk369/technologies_configuration_example09186a00800949c0.shtml

Regards,

Daniel

Actions

This Discussion