Hello,
I am having difficulties getting a PPTP VPN connection established.
I have one IP address on my WAN interface, using PAT for all my inside private hosts.
Everything works great, even other VPNs that use IPSEC and SSL, they get automatically translated.
Devices are interconnected like So:
We can assume the Firewall/router is properly configured on the server side.
PC (initiates the PPTP connection) ---> Cisco 2620---> (Internet) --> PPTP Server
..
When the client attempts to initiate the connection, I can see it in the TCP NAT Translation table, on port 1723, and the connection appears to work, but fails, indicating issues with GRE. (So I am told by the tech I am working with on the other side)
During my research I have gotten many different opinions on how this should work, and I feel I have over complicated things in my mind.
I read that if you are using PAT you are out of luck, or you need to dedicate a separate WAN IP for the PPTP tunnel to use. This is not ideal for me.
I also read that I could just use a static NAT 1-to-1 mapping
and additionally I read that all I need to do is something along these lines:
access-list 101 permit tcp any any eq 1723
access-list 101 permit gre any any
