Solved

Enable PPTP over Juniper-NS5GT

Posted on 2010-09-05
3
1,238 Views
Last Modified: 2012-06-21
Hi Experts,

We're having difficulties with enabling PPTP (ports 1723 + GRE 47) over this unit.
We're using VIP configuration on our WAN interface, and even when using "set vip multi" - and create a custom service as described in this post (http://www.juniperforum.com/index.php?topic=3183.0), we're still receiving error 720 when trying to connect to the PPTP serve (Windows 2008 x64 std).

If this conf (PPTP) is not supported on the Juniper, is there any other VPN service which may work? Off course taking into consideration the OS VPN limitations which are: PPTP \L2TP \PSec \SSTP.

Thx in advance
0
Comment
Question by:IT_Group1
  • 2
3 Comments
 
LVL 68

Expert Comment

by:Qlemo
ID: 33606891
The port 2048 for GRE is supperflous and maybe even wrong. Just use the protocol 47 without port restrictions.
However, I suppose what you really need is to forward PPTP traffic (not GRE) to your server, and enable the PPTP ALG in NS:
 set alg pptp enable
That should allow to process the GRE traffic which belongs to a PPTP session, without having any forwarding for GRE.
0
 

Author Comment

by:IT_Group1
ID: 33606943
Sounds good, will the juniper requires restart?
0
 
LVL 68

Accepted Solution

by:
Qlemo earned 500 total points
ID: 33607270
Not at all. Only vip multi-port and very, very few other settings get active after reboot only. The ALGs can be switched on and off at any time.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now