Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 4325 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to forward GRE from Wan to Lan for PPTP VPN servers

Juan Morales

This thread is to hopefully get answers for how to Forward GRE directly so that PPTP VPN tunnel can occur on a server behind the firewall.

Any ideas? I have tried setting a firewall rule just for GRE forward however that does not seem to be enough.



This thread was automatically locked due to age.
Parents
  • 0

    Hello,

    The subject is a little old, but I have the same problem.

    I have to do the same thing. For the moment I have configured a rule but have not yet been able to test it.

    user/network rule

    ACCEPT
    WAN (any) -> LAN (ip server) - PPTP_GROUP (GRE & PPTP)

    All other settings of the default rule.

    Is this the right way to do it? Is there any other configuration to do?

    Thank you in advance.

  • 0 in reply to Yohann THOUVENIN

    Hello Yohan,

    In effect I never got it working and honestly its just as well. The SSL VPN option in the XG firewall is simple to setup and use and the firewall will even host a web facing webpage so all your users can download and install the VPN client from anywhere in the world and connect through. This is made even easier if you link your XG to your Active Directory integration so your users can authenticate using the corporate credentials and do not have to remember another set of usernames and passwords for the vpn.

    Keep in mind PPTP has not been maintained in many many years and is very unsecured.

    My users find the small application that runs in windows or mac or on their smartphones to be un-intrusive and easy to use and it gives our company the peace of mind knowing we are using a secure VPN protocol and not a ancient and out of date one.

     

    Hope this helps.

    -Juan

  • 0 in reply to Juan Morales

    Thank you for that answer. I do know that SSL VPN is more secure and easy to implement, but XG is a replacement for another firewall. First of all, I would like not to penalize users too much.

    I'll keep looking.

    Thank you. Thank you.

Reply Children
No Data