On 8/25/05, Homero Thomsom <[EMAIL PROTECTED]> wrote: > > At the moment, the firewall rules are changed and it > blocks all the ports except MSN Messenger Port (I > don't remember the port number). > I try to NAT the PPTP connection Port to the "PPTP > Server" (Windows 2000) but is imposible to forward the > GRE Protocol (This is the reason for m0n0wall PPTP > redirection). > Next, I thought about using IPSec because I read that > exists technology called NAT-T that uses UDP, does not > support it.
It doesn't *just* use UDP though, it also needs AH. In the situation you describe, it won't work. OpenVPN is a good VPN solution where the ports you can access are limited, though it doesn't exist in pfsense anymore. -cmb
