Hi Everyone, I have an OpenBSD 3.3 transparently bridged packet filtering firewall. I would like to enable a VPN connection through the firewall into a Win2K3 server that sits behind the firewall.
I am finding conflicting information on what ports/protocol to open up. Microsoft is saying protocol ID 47 and TCP port 1723 both inbound and outbound. If that's true, then something like the following should work: pass in quick on ext_if proto 47 from any to any pass out quick on ext_if proto 47 from any to any pass in quick on ext_if proto tcp from any to any port 1723 keep state pass out quick on ext_if proto tcp from any to any port 1723 keep state I had not luck with the above. If I disable PF I can connect fine, so I know for sure that the problem has to do with PF blocking my access. To complicate matters, I've found other references to protocols 50 & 51 and port 500. I'm hoping that one of you who has this working can let me know what I need to config in order to allow my VPN connection to pass through the firewall. Thanks, Dave
