I am having a problem with client-side PPTP routing using NT RAS. The problem is that the server running PPTP also has other services running on it that need to be accessible from PPTP clients. The routing table on the client correctly routes the remote subnet (the firewall-blocked subnet where the PPTP server lives as well as other machines that the client wants access to) to the tunnel interface. However there is a specific route in the client routing table for the IP address of the PPTP server that points to the ISP's gateway on the internet, not the PPTP tunnel interface. So IP traffic to every address on the remote subnet gets routed correctly through the tunnel, except for traffic to the PPTP server itself, which goes over the internet and therefore gets filtered by the firewall (there is a hole in the firewall specifically for PPTP, but most other stuff gets filtered). One would expect this, given that the PPTP tunnel itself needs to be routed over the internet. But how do you solve this problem in the routing table, where you want to have TCP port 1723 & IP protocol 47 to the PPTP server machine be routed through the internet gateway, while all other IP traffic to the PPTP server machine should be routed through the tunnel interface? I tried to solve this problem by adding another IP address to the PPTP server machine's NIC, to distinguish the PPTP service from other services on the machine, however I could not figure out how to get the PPTP service to listen on the 2nd IP address. Any help on this problem would be greatly appreciated. Thanks, Jim Yonan Boulder, Colorado - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
