VPN wont work on sbs 2008

Of course. I forgot to mention that.
My vpn type on my laptop is set to automaitc.
The dialog box is checking for username and password for about 30 sec. Then I get a 800 error.

Lets first make sure the router has port 1723 opened. Got to http://probemyports.com/ and then select User specified custom port probe and then put in port 1723 and then run the test.

Are you able to testfrom a client from within the domain? Try to connect to see if it allows you to conect internally. If it does, look below.

Also,  the PPTP VPN requires TCP/IP port 1723 *and* IP
protocol 47 to be forwarded. Few routers explicitly allow IP
protocols to be manipulated, they normally only offer TCP or UDP, as if
those two IP protocols were all there are.

See Microsoft site for further http://technet.microsoft.com/en-us/library/cc772616(WS.10).aspx#BKMK_2

Probemyports reported that 1723 is open.
I have a linksys wrt54g2 router that can allow pptp access, and I have double checked that the router allowes pptp.
I don't think I can set protocol 47 anywhere in the router...

The wrt54g2 does not support IP protocol 47. So it is not going to work unfortunatly.

But I had it running with sbs 2003?

Go over this article and make sure you have done everything. Also pay close attention to the GRE requirments about half way down.  http://wintivity.wigital.net/?p=879

So long as you have "enable PPTP pass through" set on the Linksys it should look after GRE/protocol 47.

How did you create the VPN? you should use the SBS wizard located under Windows SBS console | network | connectivity | VPN connection | configure a Virtual Private network, rather than using the RRAS wizard.
Also under each VPN user's profile in the Windows SBS console, in the "remote access" section, check the box for "user can access virtual private network"

An 800 error indicates no handshaking at all is taking place. Either you are connecting to the wrong address or the SBS is not properly configured to accept the connection. If the only issue were GRE/Protocol 47 the connection would start and then fail with a 721 error.

I went through the guide, but it still doesn't work.
Before I did it I disabled the vpn in rras just to make sure, that there would be no conflicts.

When trying to connect my computer, while specifiing the vpn type to be pptp, I get an error 807

Is this by anyway helpfull?

You shouldn't need to set PPTP manually but if you do leave authentication as automatic or MSChap v2, lower authentication methods will not work

It can be firewall or MTU related, but to rule out other issues first try connecting from the SBS LAN to the SBS's LAN IP as a test to verify if it is an SBS or routing/internet issue

This error is primarily related to Vista (and likely Win7) can you test another client just to narrow down the possibilities.

I tried to connect via a windows xp pro computer.
Still no luck! I get an error code 721

Im not quite sure, if I understand what you meen with connecting from the SBS lan to the SBS lan's IP. I can tell you that I have double checked that the server still has the right internal IP, and that the router is forwardng port 1723 to that IP address.

A 721 error is almost always caused by blocked GRE, protocol 47 (not port 47).
Some possible causes:
- the client ISP does not support (or blocks) GRE traffic. This is not common but it does occasionally happen and most often it is with residential accounts. You could call the ISP and verify, though the standard answer seems to be we do not block any traffic.
-the client's hardware (modem, or more likely router) does not support VPN pass-through. Most newer units are fine, but many older units and even some new units such as some D-Links do not support it. I would try another router or at least verify the specs. You could also by pass the router as a test but make sure the Windows firewall is enabled and Windows and virus updates are current
-if the user has a modem that is a combined modem and router, as well as a router you may have a dual NAT configuration. This can block GRE or have the same effect. Try by passing the router and connecting to the modem directly.
-most software firewalls on client machines allow all outgoing traffic as does the Windows firewall, but some do not
-there are some security applications that will block GRE on the client machine such as Symantecs anti-virus with internet worm protection enabled, TrendMicros OfficeConnect (I think that is what it is called), and Windows OneCare.

>>"Im not quite sure, if I understand what you meen with connecting from the SBS lan to the SBS lan's IP."
Normally when connecting to a VPN you do so from off-site and use the public IP of that site/router. As a test instead you can test from the local internal network (same LAN) by using the VPN client but use the LAN IP of the server, not the public IP of the router. If this works, it means your VPN is properly configured and the issue is most likely do to the router configuration or an internet based problem.

Okay. I tried changing the IP to the servers local IP while sitting in the office.
This worked!

After that I run through the router again, even tried to point DMZ til the servers IP, but still I am not able to connect from outside.

I have OneCare installed on the server...

I have attached some screenshots from the router

MCSA2003 mentioned earlier that this router does not support GRE pass-through. There are other similar references  on the internet. I know it does work with some models for sure, but to confirm; this is the same router you used with SBS2003? If so we know the router supports the protocol.

You configurations in the images are fine, and should be all that is required for the VPN.
Just for the record, there is no need to have port 80 forwarded and RWW on SBS 2008 uses port 987. I see you have that present just not enabled, so you likely have reasons.

OneCare can definitely block the VPN access, but if you create the VPN using the SBS wizard it should automatically allow access from off site. Did you also install Forefront with the server? Again if so it is critical to use the SBS wizard, and not the RRAS wizard.
Windows SBS console | network | connectivity | VPN connection | configure a virtual private network

I have now tried to remove both OneCare but Im still not able to connect.
At the moment I am trying to set different options in NPS, to see if my problems has anything to do with that.

You should not have to make changes to NPS.
Have you re-run the VPN wizard after removing one care?

Yes I have tried running the vpn wizard with no luck.
I remember that for about 2 days at one time, (after several different tries, though) the vpn actually worked, but another network problem forced me to run the "fix my network" wizard. After that, it has been impossible to get vpn to work again

Have you tried as a test connecting from the local internal network (same LAN) by using the VPN client but use the LAN IP of the server, not the public IP of the router. If this works, it means your VPN is properly configured and the issue is most likely do to the router configuration, GRE, or an internet based problem.

Yes it works on LAN but not WAN, funny thing is that it did work when we did the initial setup, and on SBS2k3 and still does if we recconect our old server. Couldt it by any chance be because we have another sbs2k8 server in the network, that does not run VPN?

Do you have multiple SBS servers on the same network? you can't do that for several reasons. However the only reason I can see that affecting the VPN is DHCP will only work on one of the servers, yet you wouldn't get a 721 error. Sounds more like software blocking GRE on the 2008 SBS.