I'm using an OpenBSD Firewall to protect my Windows 2003 VPN Server (pptp).
The problem is: The Windows 2003 VPN Server is in a subnet with some clients the vpn connection works with my firewall. The clients from the internet don't get a connection. Because gre packets will be filtered. But I know that the main firewall in the backbone don't block gre, I test it with a simple Router configuration (DLink Router with pptp passthrough). The pptp (tcp 1723) rule is ok. My firewall rule for gre packets: pass in log on $ext_if proto gre from any to $my_vpn_server keep state Default is block in and out on $ext_if. Is it a problem with the bridge? Thanks!
