Hi,
I have RB750GL and I wanted to enable VPN so we can connect remotely to office lan.
it is working when we try to connect from computer (Windows XP pptp client) that is in LAN, but from outside, it does not work.
Windows with Connecting to <IP address> stays for about 10 seconds and then I got Error 678:The remote computer did not respond.
I test the connection whit ping and it´s fine, but when I test port 1723 whit telnet the connection fails.
I´ve configure the firewall:

/ip firewall filter
add action=accept chain=input comment="PPTP" \
disabled=no dst-port=1723 in-interface=wan protocol=tcp

and place the rule at the bottom of the list and still not working
What could be the cause of this problem? Any Ideas?

It probably doesn't want to be at the bottom of the list.
Try putting the rule before the "drop" rule.

Rules are processed top to bottom in each chain.

You have to also accept protocol 47(gre)...

HI.
I put it on the top, but still not working.
Any other ideia?

You should also allow GRE protocol: HTH,

You should also allow GRE protocol:

Code: Select all

/ip firewall filte
add action=accept chain=input comment=PPTP disabled=no protocol=gre

HTH,

Rule 1 simply makes processing faster as once established, connection data will be accepted.
Rule 2 takes care of GRE if the pptp helper is enabled in /ip firewall service-port
If you are getting to your router from the outside then you will either see the rule for 1723 increment or the log will show what is wrong.
If either of those 2 does not happen, then there is something else wrong, possibly outside your network.
There are rules in the middle that let you manage the router, I can't presume those.
Disable or remove the drop rule and use safe mode while you are testing, to be safe.
Run torch on the gateway interface to see the inbound port 1723 traffic.