Since there is a NAT involved, you most likely won't get L2TP to work or IPSEC to go on top of it. It will default to a PPTP session regardless with the NAT, so you might as well plan for that with port 1723 TCP and GRE (protocol 47). That port and that protocol is all that's needed for PPTP.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Gal Binderman Sent: Saturday, February 23, 2002 11:37 PM To: [EMAIL PROTECTED] Subject: Win2K VPN ports Hello all. A little off topic, buy yet not completely, question: I have a Win2K DC serves as a domain controller and a VPN server for Extranet clients. I have a PIX firewall, containing a NAT (static rule) to map a legal IP address to that VPN server. I'm using Microsoft EAP as the only authentication protocol for that VPN server, 128bit encryption. Does anyone know what ports should I keep open to that address in order to allow public access to that VPN server across the PIX? Thanks, Gal Binderman. [EMAIL PROTECTED] _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
