Ingate Firewall 4.2: User Manual
Prev	Chapter 6. How to configure PPTP passthrough	Next

PPTP client on the outside

For various reasons, you might want to use a separate PPTP server behind the firewall instead of the built-in firewall server. If the PPTP server is located on a non-NATed network, this is very simple. If NAT is involved, some more settings are required. Here, such a setup is shown.

Networks and Computers

First, create a network for the PPTP server on the Networks and Computers page under Network.

Relays

Go to the Relays page under Rules and Relays and create a TCP relay which should listen to port 1723 on the firewall outside and forward the traffic to the PPTP server. Select TCP port forwarding as the Relay type.

The client should connect to the outside firewall IP address.

Services

Then, go to the Services page under Rules and Relays and define the service to manage the NATed PPTP traffic. Use TPC as the Protocol, Dynamic PPTP management as the Firewall type, and Server ports 1723. Give the new service a descriptive name.

Rules

Go to the Rules page and create a rule to let the PPTP traffic through from the PPTP server to the Internet. Use the newly created service. This is needed to let the GRE traffic through.

Save/Load Configuration

Finally, go to the Save/Load Configuration page under Administration and apply the new settings by pressing Apply configuration.

Prev	Home	Next
How to configure PPTP passthrough	Up	How to configure SIP