This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PPTP VPN fails at verifying username/password...

hello everybody,

I am having a problem with the PPTP VPN on our Astaro 5.2 firewall. Our users use the PPTP VPN client included with windows xp, and it generally works ok, but for some reason I can't explain why it fails from some networks. For example I have one user, where I have verified that his setup works from his laptop from one network. When he tries to connect from his home behind a xdsl router with NAT from his ISP, it dosn't work anymore. I myself have the same setup at home and it works perfectly.

Håvard Bakke
Frustrated

This thread was automatically locked due to age.

0 cyclops over 20 years ago

habakke,

PPTP may fail if the client is located behind a masquerading device because of protocol quirks. Initial connection is handled over tcp/1723 but then goes over to GRE IP protocol 47. To build up a masquerading table most devices need TCP or UDP port information plus IP address information of both sides in order to reassign returning packets, but GRE works without ports similar to IPSec's ESP protocol, IP 50. Unfortunately there is no way to run PPTP with NAT-Traversal. As an alternative you could have a look at L2TP over IPSec which is implemneted in Windows too.

Greetings
cyclops
Cancel
Vote Up 0 Vote Down

Cancel
0 VelvetFog over 20 years ago

Try reducing the MTU size from the default of 1500 to around 1460 on the Windows machine that is having trouble connecting.

There is a shareware Windows applet that will help you do this. Google "Dr. TCP", and you'll find it.
Cancel
Vote Up 0 Vote Down

Cancel
0 bkallfelz over 20 years ago

it seems that there are problems with pptp under asl 5.2
i have a call on my supporter comsys and they will give me a workaround to fix the problem until it will be fixed by astaro. it is a known problem.
Cancel
Vote Up 0 Vote Down

Cancel