We have an SBS server on a test network that accepts VPN connections internally. However, remote users are unable to VPN in through our 2600 Router.
The SBS server is on an internal IP which is NATted on the 2600 to an external IP.
The inbound access-list has been updated to permit VPN traffic to pass through (I think):
permit tcp any host xxx.xxx.xxx.135 eq 1723
permit gre any host xxx.xxx.xxx.135
(I'll lock the VPN source IPs down once I have this worked out)
When you create a VPN connection from a remote Windows client, it appears to find the IP ok, requests the username and password but fails to authenticate and connect. So something isn't getting through?
I can see that IOS contains commands for creating tunnels between fixed locations but I assume that I can ignore these when just creating a simple VPN in to a Windows server?
Any thoughts appreciated.