i setup a microsoft IAS and VPN server. I have a watchguard firebox1000 firewall and with a specific external ip address on it that i want to use just for vpn purposes. i need to forward the ports 1723 and 47 to my internal ip of the server.
my problem is i get the following errors on the vpn server
Event Type: Warning
Event Source: RemoteAccess
Event Category: None
Event ID: 20049
Date: 10/17/2007
Time: 10:36:35 AM
User: N/A
Computer: IT-SERVER
Description:
The user connected to port VPN7-127 has been disconnected because the authentication process did not complete within the required amount of time.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
and
Event Type: Warning
Event Source: Rasman
Event Category: None
Event ID: 20209
Date: 10/17/2007
Time: 10:38:33 AM
User: N/A
Computer: IT-SERVER
Description:
A connection between the VPN server and the VPN client 75.201.222.4 has been established, but the VPN connection cannot be completed. The most common cause for this is that a firewall or router between the VPN server and the VPN client is not configured to allow Generic Routing Encapsulation (GRE) packets (protocol 47). Verify that the firewalls and routers between your VPN server and the Internet allow GRE packets. Make sure the firewalls and routers on the user's network are also configured to allow GRE packets. If the problem persists, have the user contact the Internet service provider (ISP) to determine whether the ISP might be blocking GRE packets.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
i have a policy setup in watchguard to allow traffic from the external base ip to the real base and also a pptp policy to allow any to the external ip address but i am still getting those errors on teh server and the client cannot connect.
please help!
Start Free Trial
