Re: SBS 2003/VPN - Error 721
- From: "Marina Roos [SBS-MVP]" <marina@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 13 May 2005 13:00:02 +0200
Hi,
Error 721 points to the GRE protocol 47 not being forwarded from the router
to your external nic IP. Also known as PPTP pass through. You shouldn't need
to do anything manual in ISA, just run CEICW. Which router do you have?
I get error 721, why is that?:
http://www.smallbizserver.net/SBS2000/RemoteAccess/Igeterror721whyisthat/tabid/94/Default.aspx
--
Regards,
Marina Roos
Microsoft SBS-MVP
One of the Magical M&M's
www.smallbizserver.net
Take part in SBS forum:
http://www.smallbizserver.net/Default.aspx?tabid=53
<postings@xxxxxxxxxxxxxxx> schreef in bericht
news:1115980553.224226.39730@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
> Hi
>
> Here is a repost of a VPN Problem I am desperate to solve. I'm
> keeping this concise as possible. Please coudl you take the time to
> look this over?
>
> I have a SBS 2003 server (not running ISA server). I also have another
> server running ISA 2000 which links via external network card to an
> ADSL router, which in turn goes to my ISP and the Internet.
>
> I simply cannot get an XP client to connect via VPN through the
> Internet (by running "Connect to Small Business Server icon" set up
> via a remote connection disk). All I get is error 721.
>
> UNSUCCESSFUL TESTS COMPLETED:
>
> * I can't log onto the VPN via clients external network interface
> (which links to another ADSL router/Internet). Error 721.
>
> * I have plugged the client's external network card directly into the
> external network card of the ISA Server. No change in behavior. Error
> 721
>
> SUCCESSFUL TESTS COMPLETED:
>
> I can log onto the VPN internally (using PDC internal network IP
> address, and internal network card).
>
> >From the client I can Telnet port 1723 via the external network and
> routers.
>
> I have successfully tested GRE using pptpclnt.exe on the client and
> pptsrv.exe on the server via the external network and routers.
>
> MY CONFIGURATION SO FAR:
>
> ISA Server:
>
> * Added an extra static IP address (allocated from ISP) to External
> network card for VPN use.
> * Created Protocol definition for GRE, 47, Inbound.
> * Created Protocol definition for PPTP, 1723 Inbound
> * Published SBS internal network interface IP address to allocated
> external VPN IP address. I'm only allowing GRE and PPTP protocols
> through in this instance.
>
> * ISA Packet Filters on allocated External VPN IP Address:
> - UDP, Direction = Both, Local Port = 500, Remote Port = 500
> - UDP, Direction = Both, Local Port = 1701, Remote Port = 1701
> - PPTP call, 47, Direction = Both
> - ICMP unreachable, ICMP. Inbound, ICP Type =3, ICMP Code = All codes
>
> SBS Server:
>
> * Ran remote access wizard, assigned VPN IP address I allocated for the
> ISA Server box.
> * Added user to "mobile users" security group.
>
> Windows XP (SP2) Client:
>
> * Note Internet is working fine via external network card.
> * VPN was installed via a remote connection disk created on the SBS
> 2003 server.
> * No Internal firewall used when testing.
>
> Please can I have your thoughts on how I can get this thing working?
>
> Many thanks!
>
> Alex
>
.
- Follow-Ups:
- Re: SBS 2003/VPN - Error 721
- From: postings
- Re: SBS 2003/VPN - Error 721
- References:
- SBS 2003/VPN - Error 721
- From: postings
- SBS 2003/VPN - Error 721
- Prev by Date: Re: nic replace on sbs 2003
- Next by Date: Re: Is this a DNS problem?
- Previous by thread: SBS 2003/VPN - Error 721
- Next by thread: Re: SBS 2003/VPN - Error 721
- Index(es):
Relevant Pages
|
|
