Topic: Freeswan and PPTP co-existence

[bearau]

Are there known issues with using both freeswan and pptp connections on the same gateway box? I have several ipsec vpn's running flawlessly but want some Windows XP clients to be able to use the pptp login for access (freeswan is too difficult for most clients to get working on a windows xp box).

My issue seems to be something to do with GRE packets, i've googled for half a day but can't find the answers i'm after. The log file for the pptp connection that is being terminated is http://bmm.id.au/pptp.txt

I can ping either way but as soon as the ping stops the tunnel dies.

[Guest]

I have PPTP and IPSEC running next to each other without a problem.

GRE is for PPTP and UDP 500 is for IPSEC.

Somehow he doesn't like the GRE packets. Maybe you didn't set the xp client up right?

If a tunnel dies as soon as the traffic stops, then probably you're behind a firewall of some kind (soft or hardware). Connection tracking tells the firewall that the connection stopped and new incomming traffic is blocked as the firewall doesn't allow incoming traffic...

So, next to the SME-server, are you behind a firewall or natting router?

Also, there are some buggy things going on between XP and PPTP on a SME-box. See forum for details.

grz,

Richard.