Setup Server 2003 VPN with two NIC cards

BTW: "10.0.1.192   to 10.0.1.292" is a typo, isn't it?
*** Yes typo. Should be 10.0.1.192 to 10.0.1.202
This is an Edgemarc 4500 router and it has a check box to allow PPTP traffic. So GRE should be forwarded.  All patches for this Server are up to date. I have had the seond NIC disabled also because it was having problems. I can't do any testing until after about 6:00 PM today so I'll update later.

I set this up again using the wizard. Here is what was in the final window:

VPN clients connect to the following public interface: Local Area Connection 5

VPN clients are assigned the following network for addressing: Local Area Connection 4.

Client connections are accepted and authenticated using: remote access policies for this server.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
It keeps talking about Local Area Connection 4, which is disabled. Is this a problem?

Later update:
VPN Server is working behind the router/firewall  but not from outside.
Remote PC is Win XP Pro and VPN network connection i set up there but it never gets any resonse. Here is how my firewall/router is setup:

Firewall

   Help  Enable Firewall for WAN:<input name="fwEnable" checked="checked" type="checkbox">

---

Basic WAN Firewall Settings:These setting apply to services that are running on the System.Allow HTTP access through firewall:<input name="useHttp" type="checkbox">Allow HTTPS access through firewall:<input name="useHttps" type="checkbox">Allow TELNET access through firewall:<input name="useTelnet" type="checkbox">Allow SSH access through firewall:<input name="useSsh" checked="checked" type="checkbox">Allow SNMP access through firewall:<input name="useSnmp" checked="checked" type="checkbox">Allow TCP Port:<input size="20" name="tcpAllow" value="" type="text">Allow UDP Port:<input size="20" name="udpAllow" value="" type="text">Trusted Management Addresses: Apply basic settings configuration only to the following addresses: Address can be host IP or network/mask, e.g. 10.10.10.1 or 10.10.10.0/24. To delete an entry, highlight and delete it. Forwarding WAN Firewall Settings:These settings apply to packets being forwarded to systems running behind the firewall.Enable Firewall Logging:<input name="enable_ldrop" checked="checked" type="checkbox">Enable PPTP Server Pass-through:<input name="pptp_enable" checked="checked" type="checkbox">PPTP Server IP Address:   10.0.1.146

NAT:

tcp;74.x.xxx.xxx-255.255.255.248-1723>10.0.1.146-1723

Please clarify "VPN Server is working behind the router/firewall  but not from outside".

If you use private address of the server, it works?
With public from inside?
 With public from outside (does not work)?

If you use private address of the server, it works?  Yes
With public from inside?  No
With public from outside (does not work)?  No
    This appears to be a router issue.I can't make any router changes until Saturday morning.

In that case I would use WireShark to record PPTP and GRE traffic on server, and compare private and public address tests.

My analysis shows that the PPTP traffic is not getting through the EdgeMarc 4500 router. I have port 1723, TCP/UDP natted to the VPN internal Server. Problem is that no one knows much of anything about this series of routers, unlike Cisco. NAT looks like this:
tcp;74.x.xxx.xxx/255.255.255.248-1723>10.0.1.146-1723
udp;74.x.xxx.xxx/255.255.255.248-1723>10.0.1.146-1723

Edgewater Networks does not support their products directly! I can only get support through the evndor that sold it to me and that is limited. It's a good router but there is little "real" documentation on it.

Maybe you have it NATted correctly, but if the EdgeMarc is acting as a firewall, it may be blocking port 1723 even with the NAT entry correct.  I'm with you on not knowing anything about this router, but I do know on other routers I've managed, I would have to open the port by adding a packet filter to allow traffic on that port first and then also NAT it to the internal address of my VPN server.

I just visited their website, and they do have an on-line form to request documentation (don't you just hate it?!). So, you might try filling in that form and see if you can get the documentation.  Depending on how good or bad it is, you might be able to figure out how to work with the router directly from that.

I have the documentation that they offered - worthless!  I actually found a pretty good set of documentation bureid on the Polycom website. Polycom is the VOIP phone maker and Polycom uses these Edgewater converged routers. Their documenta actually have screen shots of the pages in the router viewable through IE. It seems that they say to uncheck PPTP pasthrough and use rules. I wish that I could attach the 3 Gig PDF file here but it's too large. The docs are pretty good but I don't understand the sub net issues that are talking about. I'll try to extract those pages.

Latest is that even with the firewall in the router disabled, I cannot get VPN traffic through this router. Unfortunately, Wireshard would not load and run on this MS Server 2003. We are going to work on this issue again after 6:00 PM today.

Two people responded to this problem and I learned quite a bit from each one by their tiips and what to look for. I did not get a direct fix because not many people know anything about this Edgemarc Router. To anyone considering purchasing an Edgemarc router - good product but hard to configure - make sure you have support on it or don't buy it! I will split the points two way if that's ok.
The final fix, in the router:
1. Click the checkbox for "allow PPTP" passthrough and enter the internal address of the VPN Server.
2. In the NAT
   Enter "any" instead of a double entry allowing TCP and UDP on port 1723
3. Part of the problem here was that the soft start of the router was not correctly activating the changes. DO a router reboot from the internal menu.

Thanks for your help.

So glad you were able to figure out the router end of things.  Thanks for the points!