allowing PPTP traffic from inside 506e network to outside

[excuseme]

I have a couple SBS servers at remote offices. I can connect to the servers while in other offices. However , I can not connect to the server while in my main office. I am currently using a PIX 506e at my main office. Do i need to enable PPTP somehow to allow outgoing pptp connections or maybe enable pptp both ways? please assist.

 

[fdurham]

I think I understand what you want to do, but I am not sure if i have your infrastructure down correctly...

Main Office has two remote offices terminated via VPN. We will call them R1 and R2. Both have SBS (Small Business Servers). What you are saying is that if you are in one remote office, you can connect to the other remote office via the main office? Can you explain a little better if that is not what you mean.

Frank

 

[excuseme]

I have 2 remote offices running SBS03 and the staff in those offtices use the SBS VPN implementation to connect to their offices while on the road. The VPN connects and works properly from most remoet locations. However, when the laptops are behind the PIX in our main office, those same laptops are no longer able to establish VPN tunnels to the remote offices. I have run a log on my Firewall to discover that the GRE packets are being blocked and denied translation entries for the outbound connection. By default, only one outbound rule( the default all/all rule ) can be applied at one time. so any entries i make to allow GRE outbound kills the ability for all other traffic outbound.

any help with this is greatly appreciated