[prev in list] [next in list] [prev in thread] [next in thread] 

List:       focus-ms
Subject:    RE: IPSec and GRE (47)
From:       "Jim Harrison" <Jim () isatools ! org>
Date:       2007-01-24 19:16:45
Message-ID: 4C12C33FB9D17644817F45CDE1966274146A73 () arthurdent ! home ! jalojash ! org
[Download RAW message or body]

No - PPTP uses a combination of TCP:1723 and GRE (IP:47, not TCP:47).
The process operates thus (greatly simplified):
Client --> TCP:1723 (connect & logon) --> Server
Client --> GRE: (VPN tunnel) --> Server

Note that the TCP:1723 connection remains active even after the GRE connection is made.

Jim

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On Behalf Of juan carlos davila
Sent: Tuesday, January 23, 2007 1:31 PM
To: 'Thomas D.'; focus-ms@securityfocus.com
Subject: RE: IPSec and GRE (47)

I don't understand the question but the tcp port used for gre is: tcp 1723.

Try open this port


       Juan Carlos Davila Ortiz
       Ingenieria de Soluciones
Servicios Administrados Mexis S.A. de C.V.
          Tel. 0133 31226160
          Fax. 0133 31220948
            www.mexis.net


-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of Thomas D.
Sent: Lunes, 22 de Enero de 2007 10:55 a.m.
To: focus-ms@securityfocus.com
Subject: IPSec and GRE (47)

Hello,

I want to configure a Windows 2003 server machine, which provides remote
access.
This server should be protected using "IPSec".

In the IPSec mmc I cannot use protocol 47 (GRE). If I use the IPSec filter
from RAS, I can select this protocol.
But because I want to manage the "firewall" from the IPSec mmc, I have to
configure it there.

Do I have to use command shell to configure IPSec that way?


Thanks,
Thomas


All mail to and from this domain is GFI-scanned.


[prev in list] [next in list] [prev in thread] [next in thread]