I have my XP Home SP3 PC set up as a VPN server. With my old firewall I had to specifically open port 1723 in order for VPN connections to be accepted. I have just installed NIS 2011 and in its default configuration it too does not permit VPN connections.
I created a rule for the smart firewall to specifically open port 1723 and I moved the rule to the top of the rules list. Still no connection.
Then I modified the rule under the 'Communications' heading to allow 'All types of communication (all ports local and remote)'. With this the ONLY change my VPN connection on 1723 is accepted, but so is a lot of other traffic which rather defeats the object of the firewall!
History shows that port 1723 is being blocked despite my rule until I open all ports then it shows it as being permitted.
Why does my rule specifying port 1723 not work and only when I open all ports can I connect?
I have my XP Home SP3 PC set up as a VPN server. With my old firewall I had to specifically open port 1723 in order for VPN connections to be accepted. I have just installed NIS 2011 and in its default configuration it too does not permit VPN connections.
I created a rule for the smart firewall to specifically open port 1723 and I moved the rule to the top of the rules list. Still no connection.
Then I modified the rule under the 'Communications' heading to allow 'All types of communication (all ports local and remote)'. With this the ONLY change my VPN connection on 1723 is accepted, but so is a lot of other traffic which rather defeats the object of the firewall!
History shows that port 1723 is being blocked despite my rule until I open all ports then it shows it as being permitted.
Why does my rule specifying port 1723 not work and only when I open all ports can I connect?
I am sure that this is down to NIS, my previous firewall (Zone Alarm) could be configured to work without changing fundamental Windows behaviour and NIS works when opened up fully. So, there must be a halfway house where NIS will permit this connection without having to alter windows settings.
I do not understand how NIS can allow the connection when ALL ports are open but block it when I specify that 1723 should be open.
Have you also opened port 47 for the GRE protocol. Having it connect with a wide open rule might indicate that there is another port involved somewhere.
Well, the connection in question is from my iPhone 4, but I will also be trying to connect from my Windows7 laptop when I get this sorted.
As I said the problem seems to be that NIS refuses to recognise the rule when it has a specific port specified, if all are open then the problem goes away, but then why have a firewall?
I had tried port 500 before as it was listed in a previous thread. It seems that 1701 might be the answer as I can now connect despite there being no notification that 1701 was blocked.
I will keep my fingers crossed but this looks like the answer!