Hi Stan I will answer your question regarding "Microsoft VPN" instead. The corporate support folks might have told you that the most common Microsoft VPN type [still] is something called PPTP:
http://en.wikipedia.org/wiki/Point-to-point_tunneling_protocol It uses TCP port 1723 as "control channel" but also use GRE for the actual tunneling of the traffic. http://en.wikipedia.org/wiki/Generic_Routing_Encapsulation You need to also allow the "proto gre" in pf to make your VPN connection work. I hope this point you in the right direction, Best regards Anders -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of stan Sent: Friday, November 27, 2009 15:56 To: OpenBSD general usage list Subject: How to determine what ports are being used? I have a home network tat uses an OpenBSD machine as it's firewall. I now have a company laptop (Windows), and it has some sort of "Microsoft VPN". If it remove my "block all" rule I can get this VPN up. The corporate "support" folks say that it uses port 1723, but putting thta in pf.conf and restarting (with the block all) rule sill does not allow it to work. If I turn off the block all rule, and fire up the VPN, how can I determine what ports it is using, so that I can create the correct pf.conf rules? -- A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail?
