Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 2009 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Outgoing PPTP connections fail

Rob_Bridges
Hello, thanks in advance for any help provided.  I am trying to connect through the our ASG425 to a remote VPN server.  The first 2 packet filter rules I have are Any-> PPTP ->Any and Any->Gre->Any.  Still the log drops the gre protocal 47.  Any ideas?


This thread was automatically locked due to age.
Parents
  • 0
    For the two dropped packets, the log indicates fwrule="60001", the default-drop rule for the INPUT chain.  In other words, the packet is one that was destined for the Astaro External interface with IP 99.xx.xx.xx, and this was blocked before the packet filter rules in your picture were considered.  You likely have a DNAT for that traffic, so you should just tick the box for "Auto packet filter rule" in that definiton.

    For a bit more of an explanation, check out: https://community.sophos.com/products/unified-threat-management/astaroorg/f/54/t/39358

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    For the two dropped packets, the log indicates fwrule="60001", the default-drop rule for the INPUT chain.  In other words, the packet is one that was destined for the Astaro External interface with IP 99.xx.xx.xx, and this was blocked before the packet filter rules in your picture were considered.  You likely have a DNAT for that traffic, so you should just tick the box for "Auto packet filter rule" in that definiton.

    For a bit more of an explanation, check out: https://community.sophos.com/products/unified-threat-management/astaroorg/f/54/t/39358

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Cookie Information Banner