[ previous ] [ next ] [ threads ]
 From:  Vincent Jardin <vjardin at wanadoo dot fr>
 To:  Fred Wright <fw at well dot com>, m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] several PPTP client via NAT simultaneously
 Date:  Wed, 2 Jul 2003 08:34:14 +0200
Le Mercredi 2 Juillet 2003 01:38, Fred Wright a écrit :
> It's actually much worse than that.  Not only do you have to contend with
> the GRE traffic, but you have to deal with the TCP-based control
> connection, which is only permitted by the protocol to exist once per pair
> of endpoints.  There's even a mechanism in the protocol to close one of
> the "redundant" connections that could occur if you have a bidirectional
> client/server relationship between two machines.  Microsoft tried really
> hard to surpass the NAT-unfriendliness of FTP. :-) L2TP is much more
> straightforward, but less widely supported.

However, le Microsoft's L2TP requires IPSec. It means that it cannot work with 
a NAT ;-)
IPSec can disabled by changing the registry !!!