I have a WatchGuard III 700 firewall. I have a Microsoft 2003 SBS server with RRAS configured for VPN connections. I am having difficulties connecting a XP VPN client to the 2003 server. I can see in the firewall log file that port 1723 is being passed through to the2003 server but it is denying GRE (47). Below is an excerpt from the log file:
12/14/06 15:12 firewalld: deny in eth0:1 57 gre 20 115 X.X.X.X X.X.X.X (default).
Each time i tried to establish a VPN connection i receive an error 721 connection could not be established.
I'm not quite sure where I need to allow the GRE (47) in the services arean of the WatchGuard. Ihave port 47 allowed in the firewall rule for VPN. I did read you need to setup port 47 an "IP" protocol but when I do this it doesn't allow me to enter a NAT for the 2003 server.
Any insight would be greatly appreciated