Hi Tom, Is this true even if you have the ISA server connected as the DMZ host? I have to contact Linksys anyway because for some reason my linksys keeps dropping off line. I have concerns that it has a vulnerability. I am running version 1.45.3 of the firmware which is the latest but I continue to have problems with the device just dying. I note that Ray has little faith in these devices, but I have had good luck with them. Prior to upgrading to version 1.45.3 firmware my PPTP was working fine, but not the DDNS stuff. I like this solution because it removes the problem of maintaining publishing rules. I have also had trouble on ISA servers renewing their DHCP leases. So this leads to a couple of questions: 1. Is there any special config that should be done to ensure DHCP works reliably on the external interface. 2. Is it possible to script the creation and deletation of publishing rules? If this is possible then it would really eliminate the issues that occur when the external IP address changes. When it does just delete the old rules and create new ones with the correct IP. As always Thanks Bill -----Original Message----- From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxxxxxxxxx] Sent: Tuesday, December 09, 2003 6:22 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: PPTP Question http://www.ISAserver.org Hi Bill, I set this up for someone just a few days ago. You just need to forward TCP ports 47 and 1723 to the ISA firewall's external interface. Yes, I know its IP protocol 47, but the Linksys interface doesn't realize that :-) HTH, Tom -----Original Message----- From: William Holmes [mailto:wtholmes@xxxxxxxxxxxxxx] Sent: Tuesday, December 09, 2003 8:22 AM To: [ISAserver.org Discussion List] Subject: [isalist] PPTP Question http://www.ISAserver.org Hello, In order to use publishing it is necessary for the external IP address of the ISA server to stay at a fixed IP. Unfortunately I have a DHCP assigned address on my Cable Modem. My solution has been to install a Linksys BEFSX41 router. This router has a DMZ port. I have my ISA server configured as the DMZ host. In this way the ISA server always sees a fixed IP address despite what the external address is. In addition this router supports dynamic DNS updates so whenever the router's IP address changes it updates my Dynamic DNS service. All of my published services work find except PPTP. And this has only stopped working since updating to the latest Firmware v1.45.3. Outbound PPTP works fine but inbound PPTP to the ISA server does not. Does anyone have any experience with this or suggestions about how allow inbound PPTP to work. It was working fine in the v1.43.3 firmware but that firmware has issues with working with DDNS. Thanks Bill ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: wtholmes@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')