VPN from behind a FW

  • Thread starter Thread starter Frank Marsolais
  • Start date Start date
F

Frank Marsolais

I am trying to utilize a win2k vpn connection from behind
either a checkpoint firewall v4.1 using NAT or behind
NT4.0 MS Proxy Server.
The proxy client does not seem to intercept the VPN
protocol so that seems to be a non viable option.

The firewall connects fine if connecting from the DMZ but
when the connection is made from the 192.168 network and
using NAT the connection is made but authentication never
happens. Seems like the NAT wrapper is being opened to
get to the VPN wrapper and when the response is being made
to my win2k client it is being sent to the 192.168 address.
So, is this correct and therefore the Win2k VPN cannot be
used from behind a FireWall?

Would the optimal solution be to replace the Win2k VPN
client behind the FW with a Win2k VPN server that has a
reachable IP address? And provide VPN access to the Remote
VPN server
 
Hi Frank.

Thank-you for your post.

It sounds like you are running into the issue described in this article:

176924 Using PPTP, RRAS, and Proxy Server 2.0
http://support.microsoft.com/?id=176924

I hope that helps.

Tim Rains
Product Support Services
Microsoft Corporation

This posting is provided "AS IS" with no warranties, and confers no rights.
 
Back
Top