Re: VPN and Windows Firewall

You might make sure the XP SP2 Windows Firewall is configured to allow PPTP
VPN traffic through...

http://theillustratednetwork.mvps.org/WM2003/PPTP_VPN/LAN/WindowsFirewallAdvanced.JPG

http://theillustratednetwork.mvps.org/WM2003/PPTP_VPN/LAN/WindowsFirewallAdvancedServices.JPG

http://theillustratednetwork.mvps.org/WM2003/PPTP_VPN/LAN/WindowsFirewallServiceSettings.JPG

When you forward TCP Port 1723 traffic through the XP SP2 Windows Firewall
GRE Protocol 47 traffic is automatically enabled. There is a test you can
run detailed in the "PPTP Ping" and "VPN Traffic" sections on this page that
may help pinpoint the problem.

http://www.microsoft.com/technet/community/columns/cableguy/cg0105.mspx

Also check the event viewer logs for possible clues...

http://www.microsoft.com/technet/support/ee/ee_advanced.aspx

--

Al Jarvi (MS-MVP Windows Networking)

Please post *ALL* questions and replies to the news group for the
mutual benefit of all of us...
The MS-MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no
rights...

<andresms5@xxxxxxxxx> wrote in message
news:1160315070.885771.233360@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hi Andy,
First you should configure your Router to allow VPN network connecion and
allow traffics between your Laptop (client) and Desktop Offce (server).
Are you able to ping from the Laptop?.
Have a look at this article:
http://technet2.microsoft.com/WindowsServer/en/library/0332e37c-61da-44fe-9633-4438d37e19021033.mspx?mfr=true
HTH.
Please let us know.
Regards,
nass
-----------
www.nasstec.co.uk

Nass, thank you for your reply.

My router has VPN traffic enabled (both PPTP and L2TP). I don't think
it has anything to do with it, as I can get the connection to work by
just disabling any of the two windows firewalls and leaving the router
alone.

I am able to ping from the laptop. In fact, I run various services in
my Desktop at the office (Cygwin/sshd, VNC, etc...) and they all work
great.

The article talks about the GRE protocol. I'm not sure if it is allow
through the Windows Firewall, but I don't know how to check, as it is a
network layer protocol.



.

Relevant Pages

  • Re: I am sick of windows firewall
    ... It was not known to me the windows firewall concentrates only on ... some driver or extensions. ... it should not report when data is ... those traffics which are getting/sending data from net. ...
    (comp.security.firewalls)
  • Re: I am sick of windows firewall
    ... It was not known to me the windows firewall concentrates only on ... If the updates are security related then you should get them. ... I did not install and will not be installing any additional firewall software on ... those traffics which are getting/sending data from net. ...
    (comp.security.firewalls)
  • Re: I am sick of windows firewall
    ... It was not known to me the windows firewall concentrates only on ... If outbound traffic needs to be stopped by a user of a FW solution, then packet filtering rules are going to be set to stop the outbound traffic, which was determined by reviewing FW logs and making a determination that the traffic was dubious in some nature and stopping the traffic. ... those traffics which are getting/sending data from net. ...
    (comp.security.firewalls)
  • Re: Windows XP SP2 Firwall does not block programs, programs just run
    ... > do not run the windows firewall with zonealarm, ... I guess MS or Trend or Norton firewalls dont block outward traffics ...
    (microsoft.public.windowsxp.general)
  • Re: PPTP VPN WINDOWS XP pro SP2
    ... PPTP VPN client in SP2: I was able to connect to my office, ... I noticed that the port 137 scope was set to "subnet only". ... > Description of the Windows Firewall feature in Windows XP ...
    (microsoft.public.windowsxp.security_admin)
Loading