PPTP errors (721, 619, etc)
-
Monday, May 14, 2012 10:20 PM
OK so I have a 2008 SBS server. It has RAS/PPTP all setup and is working... however... I can ONLY get it to work on a Mac!
I am troubleshooting a connection for a user when I ran into this issue. It was working previous to this and I don't know what has changed but let me tell you what I've done so far;
- Running a Mac (Lion) with two virtual Windows PCs - XP and 7 (both pro).
- Both Windows PC's have Firewall turned off, no Antivirus/malware software install.
- All are using a different local IP to the destination network.
- Created a PPTP connection to remote network, try to establish and get errors;
- Windows 7 gets error 619, Windows XP gets error 721.
- Mac however using the same settings, connects fine and I can jump on the server, share files, etc.
Now bear in mind that ALL these computers use the same network, router, etc so I'm ruling that out (unless someone tells me otherwise).
So what is Windows doing (or not doing) that the Mac isn't?
I have had similar issues with other networks and for the most part I found that the offending device was indeed the router (almost always a Linksys) so I would swap that for a Netgear or something and it would work. However I don't get why the Mac works and the Windows computers don't.
Any suggestions would be greatly received.
Thanks
Dan
All Replies
-
Tuesday, May 15, 2012 8:43 PM
Make sure the virtual machine NIC's are bridged to the host's nic.
Make sure you are in a LAN other then the RRAS server's LAN when attempting to connect using PPTP.
Try to see if the port 1723 tcp is opened on the public interface using a telnet client.
If the RRAS is not the gateway to the LAN and you use a router, configure the router to forward PPTP traffic to the rras internal address.
MCTS - Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. http://mariusene.wordpress.com/
-
Tuesday, May 15, 2012 9:21 PM
Thanks for the reply Marius.
To answer those questions (more or less);
- The VMs are bridged.
- The network they are connecting from is entirely different (172.16.x.x connecting to 192.168.11.x).
- I can telnet on port 1723 from any machine (including the ones that fail on PPTP).
- The RRAS network was working as far as I could tell. Do you mean to specifically to port forward 1723 to the server? If thats the problem then why would the Mac work and the Windows machines not? I'm assuming that the router doesn't care what device I'm using, it's just going to pass through the traffic based on ports etc...
Cheers,
Dan
-
Thursday, May 17, 2012 2:56 AMModerator
Hi Dan,
Thank you for the post.
SBS2008 require port forwarding settings on the SBS router. Please read article below.
Configure the Linksys BEFSR41 for Remote Access--Manual Router Configuration--enable port forwarding TCP 1723 for VPN.
http://social.technet.microsoft.com/wiki/contents/articles/923.aspxIf there are more inquiries on this issue, please feel free to let us know.
Regards
Rick Tan
TechNet Community Support
-
Tuesday, May 22, 2012 5:38 AM
So I found the fix... or rather the culprit. It was Symantec End Protection.
I don't know what it's doing with the firewall but it stops the Windows Firewall and starts it's own which basically kills the PPTP handshake. It let's through 1723 for sure but I think it's port 47 (GRE) that it messes with.
Once I removed Symantec (and installed MSE) it worked like a charm.
Time to roll out a new profile to remove all Symantec firewalls!
Thanks anyway for all your advice.
Dan
- Proposed As Answer by gwyddion Tuesday, May 22, 2012 5:39 AM
- Marked As Answer by Rick TanModerator Wednesday, May 23, 2012 1:33 AM
.png)
