• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1262
  • Last Modified:

Enable PPTP over Juniper-NS5GT

Hi Experts,

We're having difficulties with enabling PPTP (ports 1723 + GRE 47) over this unit.
We're using VIP configuration on our WAN interface, and even when using "set vip multi" - and create a custom service as described in this post (http://www.juniperforum.com/index.php?topic=3183.0), we're still receiving error 720 when trying to connect to the PPTP serve (Windows 2008 x64 std).

If this conf (PPTP) is not supported on the Juniper, is there any other VPN service which may work? Off course taking into consideration the OS VPN limitations which are: PPTP \L2TP \PSec \SSTP.

Thx in advance
0
IT_Group1
Asked:
IT_Group1
  • 2
1 Solution
 
QlemoC++ DeveloperCommented:
The port 2048 for GRE is supperflous and maybe even wrong. Just use the protocol 47 without port restrictions.
However, I suppose what you really need is to forward PPTP traffic (not GRE) to your server, and enable the PPTP ALG in NS:
 set alg pptp enable
That should allow to process the GRE traffic which belongs to a PPTP session, without having any forwarding for GRE.
0
 
IT_Group1Author Commented:
Sounds good, will the juniper requires restart?
0
 
QlemoC++ DeveloperCommented:
Not at all. Only vip multi-port and very, very few other settings get active after reboot only. The ALGs can be switched on and off at any time.
0

Featured Post

Microsoft Certification Exam 74-409

VeeamĀ® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now