Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 2011 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Outgoing PPTP connections fail

Rob_Bridges
Hello, thanks in advance for any help provided.  I am trying to connect through the our ASG425 to a remote VPN server.  The first 2 packet filter rules I have are Any-> PPTP ->Any and Any->Gre->Any.  Still the log drops the gre protocal 47.  Any ideas?


This thread was automatically locked due to age.
Parents
  • 0
    Rob, your first post in 4 years?  Let's see if we can make you feel welcome!

    I suspect this is an issue of what traffic you're trying to allow.  Please post the lines from the PF log (the actual log, not the live log as that shows only part of the story).  Also, please show a picture of your two PF rules.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Rob, you should change those packet filter rules... setting both the source and destination to "ANY" in a rule is bad news.  Try setting the internal network as the source instead of "ANY".  Also make sure the packet filter rules are enabled.

    If you don't have one defined, you also need a Internal Network Masquerading Rule setup... this can be done under the NAT settings.

    Also, Since you are using PPTP, Go to Network Security / Packet Filter / Advanced Tab, and make sure the PPTP Connection Tracking Helper is selected.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Reply
  • 0 in reply to BAlfson
    Rob, you should change those packet filter rules... setting both the source and destination to "ANY" in a rule is bad news.  Try setting the internal network as the source instead of "ANY".  Also make sure the packet filter rules are enabled.

    If you don't have one defined, you also need a Internal Network Masquerading Rule setup... this can be done under the NAT settings.

    Also, Since you are using PPTP, Go to Network Security / Packet Filter / Advanced Tab, and make sure the PPTP Connection Tracking Helper is selected.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Children
No Data
Cookie Information Banner