Re: VPN access

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: "Jetro" <somewhere@xxxxxxxxxxxxxx>
Date: Wed, 13 Apr 2005 18:34:01 -0400

Double NAT creates too much overhead and it doesn't double the protection
level.

If you have VPN connections using PPTP, you will need to allow TCP port 1723
and Protocol 47 (GRE) to pass through. If you are using L2TP/IPSec, you will
need UDP port 500 and Protocol 50 (ESP) to pass through. If you are using
AH/ESP in your IPSec policies, you will also need Protocol 51 (AH) to pass.

Both router and firewall might have the settings for IPSec pass-through and
PPTP pass-through. RTFM as always.

Ask about SBS setup as VPN server in microsoft.public.windows.server.sbs NG.

.

Follow-Ups:
- Re: VPN access
  - From: polkm via WinServerKB.com

References:
- VPN access
  - From: polkm via WinServerKB.com

Prev by Date: Re: ADS Help
Next by Date: Re: ADS Help
Previous by thread: VPN access
Next by thread: Re: VPN access
Index(es):
- Date
- Thread

Relevant Pages

Re: Wireless security and VPN
... No you do not need to issue certificates for pptp. ... VPN connections is that users will often save their password for their VPN ... Smart cards do require a Certificate Authority ...
(microsoft.public.windowsxp.security_admin)
Re: ACL and Firewall
... Can the Cisco ASA's do L2TP then? ... IAS as a RADIUS server? ... accounting on my VPN connections. ... I have worked with PPTP VPNs before but I am not sure how else ...
(comp.dcom.sys.cisco)
Re: PPTP Prob.
... You don't have to add PPTP for 2000. ... It is built-in. ... You should be able to create dial-up or VPN connections through Network ...
(microsoft.public.win2000.networking)