[ cross posted on Firewall-1 and Firewalls lists]
I would like to test pptp with my SPARC Solaris 2.5 FireWall-1 2.1c box. I
understand that I need to add TCP port 1723 to my rules, but the tech notes
(Understanding PPTP.doc from MS) also say I need allow "protocol 47"
through my FW. I see in the log that protocol 47 is being blocked and it
is using a service number 34827 with an s_port of 12289.
How do I define protocol 47 on my FW?
Are they any gotcha's I should be aware of?
How are others addressing pptp through a FW?
I assume that I will should have a pptp server on my dmz and one inside my
fw to tunnel the packets through the fw. I would allow the world access to
the one on the dmz and have it proxy between Internet users and my blue
zone. Thanks foir your assistance.