Hi Jason, The MNF to MNF VPN would be a better choice as previously mentioned.
If you still wanted to do it in MNF "pass through" mode; PPTP needs to pass UDP 500, UDP 1723, and the GRE protocol (IP PROTOCOL 47). L2TP needs to pass UDP 500, UDP 1701, and the ESP protocol (IP PROTOCOL 50). Please note that GRE and ESP are protocols, so you would set them up like (no ports); ACCEPT lan wan gre - - - ACCEPT lan wan esp - - - HTH, Patrick -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Jason Whitman Sent: Wednesday, October 06, 2004 8:33 PM To: [EMAIL PROTECTED] Subject: [Security Firewall] VPN Question I have spent a considerable amount of time (on the internet and security-firewall mailing lists)researching how to set up a VPN on my test network. My setup is as follows: Windows Server 2003(192.168.0)->MNF 8.2(static IP)->Internet->MNF8.2(dynamic IP)->Windows XP WS I am a newbie at VPN setups and would appreciate advice on the best way to set this up. So far, I have set up a VPN server on my Windows 2003 server with the intention of using L2PT with Ipsec. I would like to be able to connect via my XP WS to a database server and some file shares on the Windows 2003 server. I set up rules on my server-side firewall to forward incoming connections on port 1723 and 500 as discussed in Microsoft's docs. I also set up protocol 50. I allowed the same ports on my client side. I was unable to make a connection with this setup. My first question is whether or not there is a better way to do this that I may not have thought of. If not, am I missing some rules on my firewalls? Is it possible to set up a VPN pass-through with mnf8.2? I sincerely appreciate any help with my setup. JBW
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
