RE: PPTP Question

• From: "William Holmes" <wtholmes@xxxxxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Tue, 9 Dec 2003 18:58:02 -0500

Hi Tom,

Is this true even if you have the ISA server connected as the DMZ host?
I have to contact Linksys anyway because for some reason my linksys
keeps dropping off line. I have concerns that it has a vulnerability. I
am running version 1.45.3 of the firmware which is the latest but I
continue to have problems with the device just dying. I note that Ray
has little faith in these devices, but I have had good luck with them.
Prior to upgrading to version 1.45.3 firmware my PPTP was working fine,
but not the DDNS stuff.

I like this solution because it removes the problem of maintaining
publishing rules. I have also had trouble on ISA servers renewing their
DHCP leases. 

So this leads to a couple of questions:

1. Is there any special config that should be done to ensure DHCP works
reliably on the external interface.

2. Is it possible to script the creation and deletation of publishing
rules? 

If this is possible then it would really eliminate the issues that occur
when the external IP address changes. When it does just delete the old
rules and create new ones with the correct IP.

As always

Thanks

Bill

-----Original Message-----
From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxxxxxxxxx] 
Sent: Tuesday, December 09, 2003 6:22 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: PPTP Question


http://www.ISAserver.org

Hi Bill,

I set this up for someone just a few days ago. You just need to forward
TCP ports 47 and 1723  to the ISA firewall's external interface. Yes, I
know its IP protocol 47, but the Linksys interface doesn't realize that
:-)

HTH,
Tom

-----Original Message-----
From: William Holmes [mailto:wtholmes@xxxxxxxxxxxxxx] 
Sent: Tuesday, December 09, 2003 8:22 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] PPTP Question

http://www.ISAserver.org

Hello,

In order to use publishing it is necessary for the external IP address
of the ISA server to stay at a fixed IP. Unfortunately I have a DHCP
assigned address on my Cable Modem.  My solution has been to install a
Linksys BEFSX41 router. This router has a DMZ port. I have my ISA server
configured as the DMZ host. In this way the ISA server always sees a
fixed IP address despite what the external address is. In addition this
router supports dynamic DNS updates so whenever the router's IP address
changes it updates my Dynamic DNS service. All of my published services
work find except PPTP. And this has only stopped working since updating
to the latest Firmware v1.45.3. Outbound PPTP works fine but inbound
PPTP to the ISA server does not.

Does anyone have any experience with this or suggestions about how allow
inbound PPTP to work. It was working fine in the v1.43.3 firmware but
that firmware has issues with working with DDNS.

Thanks

Bill 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com No.1
Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com No.1
Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
wtholmes@xxxxxxxxxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')

Other related posts:

• » PPTP Question
• » Re: PPTP Question
• » Re: PPTP Question
• » RE: PPTP Question
• » Re: PPTP Question
• » Re: PPTP Question
• » Re: PPTP Question
• » Re: PPTP Question
• » RE: PPTP Question
• » RE: PPTP Question
• » Re: PPTP Question
• » RE: PPTP Question
• » Re: PPTP Question
• » RE: PPTP Question
• » RE: PPTP Question
• » RE: PPTP Question
• » Re: PPTP Question
• » RE: PPTP Question
• » RE: PPTP Question
• » Re: PPTP Question
• » Re: PPTP Question
• » Re: PPTP Question

1. Home
2. isalist
3. Archive
4. 12-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---