Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 4 subscribers
  • Views 9400 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PPTP Passthrough not working

SGICT

Hi,

I've got a UTM on the latest firmware that isnt allowing a laptop to PPTP out to a foreign network, so basically I need to PPTP passthrough the UTM.

Ive allowed GRE and PPTP in network protection but in the logs Im seeing the IP address of the UTM trying to ping the foreign network but dropping it when I dial the VPN. I've set ICMP on all the options, i.e. allow through/on gateway but it still drops ping and the laptop never establishes the connection.

Ive googled and searched through this community and cant find anything related to this so any advice would be fantastic.



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    could you show us your rules for PPTP and some log entries regarding that blocking? I think then someone will give you a hint for solving that problem.

    And by the way are any firewalls or routers in front of the UTM?

    Best

    Alex

    -

  • 0 in reply to Alexander Busch

    Missed enabling the Connection Tracker helper for PPTP.

    So in a nutshell for those who need to allow a computer behind the UTM to PPTP VPN out to a foreign network.

     

    1) You need to create a new firewall rule:

    SOURCE: The internal computer that is going to PPTP VPN 

    SERVICES: PPTP and GRE from the left pane

    DESTINATIONS: Preferably add a static Host or DNS Host of the foreign PPTP server

    2) In Firewall, click Advanced tab

    Tick the box for PPTP for the Connection Tracker Helper

Reply
  • 0 in reply to Alexander Busch

    Missed enabling the Connection Tracker helper for PPTP.

    So in a nutshell for those who need to allow a computer behind the UTM to PPTP VPN out to a foreign network.

     

    1) You need to create a new firewall rule:

    SOURCE: The internal computer that is going to PPTP VPN 

    SERVICES: PPTP and GRE from the left pane

    DESTINATIONS: Preferably add a static Host or DNS Host of the foreign PPTP server

    2) In Firewall, click Advanced tab

    Tick the box for PPTP for the Connection Tracker Helper

Children
Unfiltered HTML