I use Cisco VPN software for a range of customers . After installing SP2 it
failed to connect.
All I did was review the properties on the connection I use . It says
connected, Firewalled.
Select Advanced -> settings ->Exceptions and then choose add program.
I then browse for the executable to run the Cisco VPN (ipsecdialer) and add
it.

Presto! connections all back!


"mheuvelm" wrote:

> Hi,
>
> I am trying to make a connection by Windows VPN (pptp) thru the new FireWall
> from sp2 of XP from my home to the server on my work.
>
> Fact:
> When disabling the FW: all =OK
>
> When enabling the FW and adding the 1723 TCP port it will not pass the
> Username/password screen.
>
> How do I configure the FW?
>
> Thanks,.
>
> Regards,
>
> Michel.
>

Hi,

I may have the answer for you. I was having the following problem with the
PPTP VPN client in SP2: I was able to connect to my office, which has a PPTP
server; I was able to use HTTP, SMTP, FTP and other protocols in the tunnel.
However I was unable to map a drive and access the remote file system. If I
turned FW off for that connection, everything work fine.

After doing some research, I finally figured out, by turning the FW Log ON,
that it was rejecting the NetBios Name Service UDP port (137) replies coming
from the remote. Looking in the FW configuration->Exception->File and Print
Sharing, I noticed that the port 137 scope was set to "subnet only". Well, in
my setup, the subnet at the server side is 192.168.3.0/24 and the subnet at
the client side is 192.168.5.0/24, i.e., differents and therefore not within
the "subnet scope". All I did was to change the scope to "any" and everything
worked OK even with FW on .

I did not have to set any exception for port 1723 (PPTP TCP port). It is by
default unblocked.

Hope it will work for you.

"Torgeir Bakken (MVP)" wrote:

> mheuvelm wrote:
>
> > Hi,
> >
> > I am trying to make a connection by Windows VPN (pptp) thru the new FireWall
> > from sp2 of XP from my home to the server on my work.
> >
> > Fact:
> > When disabling the FW: all =OK
> >
> > When enabling the FW and adding the 1723 TCP port it will not pass the
> > Username/password screen.
> >
> > How do I configure the FW?
> Hi
>
> Troubleshooting Windows Firewall settings in Windows XP Service Pack 2
> http://support.microsoft.com/default.aspx?kbid=875357
>
> and
>
> Description of the Windows Firewall feature in Windows XP
> Service Pack 2
> http://support.microsoft.com/default.aspx?kbid=843090
>
> Understanding Windows Firewall/Introduction
> http://www.microsoft.com/windowsxp/using/security/internet/sp2_wfintro.mspx
>
>
> --
> torgeir, Microsoft MVP Scripting and WMI, Porsgrunn Norway
> Administration scripting examples and an ONLINE version of
> the 1328 page Scripting Guide:
> http://www.microsoft.com/technet/scriptcenter/default.mspx
>