I've got a few clients on our internal network that need to connect out onto the net to other networks by using microsoft VPN. They use this to retrieve mail from the exchange server sitting externally.
It seems to find the server but fails at the authentication stage.
Do I need to create a NAT for this? Our internal address range is on DHCP so I can't create a static NAT.
What ports need to be opened?