Hi, I am needing to connect though my ISA 2004 to another ISA 2000 using PPTP. When I try the connection, hangs veryfying username and password and next error 721. Failed connection attempt I try to do it with another firwall and everything its OK, no problem. WHAT SHALL I OPEN to connect throught ISA 2004? I made a rule with ALL TRAFFIC IP and nothing!. I read all the forums in this 2 days and nothing. Please let me know what shall I do-
1. Mi Pc client is configured as secureNAT client, since it have the default gateway the internal NIC of the ISA 2. I dont have firewall client installed 3. I have a rule that permit ALL traffic 4. I have added another rule that permit GRE and PPTP
nothing works, when I try the conenction stop in " veryfying username and password In the isa monitoring:
Dest Port Protocol Action 0 GRE Failed Connection Attempt
in the Fw log: GRE 192.168.1.109 200.x.x.x 192.168.1.109 Internal External Failed 0x80070034 Salida VPN GRE 0 0 0 0
Hi, I have that doc and also an access rule that permite PPTP and GRE. In my desesperation I created a rule taht permite ALL IP TRAFFIC. When I try to connect, stop verifying username and password!. Please, how can I fix somthing so simple like this!? If I use another firewall to connect, NO PROBKLEM, so the ISA 2000 in the other side is correct.
Great, but I think that is not possible make this with ISA 2004 because if I try with another firewall everything its ok. The problem is the ISA SERVER 2004 If I make a rule that permit all the traffic doesnt work, so what can I do??
Interesting... I was having the same problem as nicopag. I had tried all the same things, followed the instructions in that document, etc.
After I posted this initial message I decided to add an incoming PPTP rule for the heck of it and it worked. I know that might sound dumb, but after reading several posts on various message boards as well as the document referenced above and a KB article I had never seen that mentioned. Anyway, I'm not sure why I finally decided to try that, but it works. So nicopag take the rule the document tells you how to create and make another one , but reverse it to allow PPTP from External to Internal.
< Message edited by rtmorgan -- 6.Feb.2006 9:37:54 PM >