Tim Nelson wrote: > ----- "Lyle Giese" <[email protected]> wrote: > >> The issue I have is from location A through either of the Soekris >> appliances, I can not get a VPN connect(PPTP) to location B from >> WinXP >> or Linux(Ubuntu or openSuSE). We can connect to location B from >> other >> locations. Also at location A, I can connect (bypassing the Soekris >> units running pfSense embedded) to our T1's with a laptop running >> WinXP >> or Ubuntu(dual boot) and I can connect. >> >> I am getting no errors from the packet rules. From my reading of the >> logs at location B comparing a good vs bad connect, the attempt never >> successfully negotiates a connection and does not get to the user >> id/password stage. >> >> Any suggestions or is this a bug? >> >> > > It sounds like you're hitting a known bug with NAT and PPTP/GRE. Check info > here under 'NAT Limitations': > > http://www.pfsense.org/index.php?option=com_content&task=view&id=40&Itemid=43 > > Tim Nelson > Systems/Network Support > Rockbochs Inc. > (218)727-4332 x105 > > I have only one client computer at location A trying to connect to location B and was the only one trying to connect to location B during testing. I can not go back to retest, but I was using Wolverine at location B and could connect from location A with no problem(until I converted B to pfSense). This note specifically seems to indicate one session should be supported.
I won't be at location B until next week to recheck, but yesterday, I was able to connect from B to A... Makes this seem to be more an embedded only bug? Or is there a difference between the liveCD and embedded image? Lyle
