The pptp server is working and I can connect when any client is on the LAN. I cannot connect to the router from any remote location. I winbox into the router from the WAN and watch the connection start to bind to the pptp server. The connection appears as an interface in both PPP and router interface window.
Connections appear (port 1723 & GRE) in the firewall connections window. And the connection times out and gives me an error 806 in MSWindows that an internet device is not allowing GRE.
I have tried:
- Opening the firewall to accept port 1723, gre, 1701 (l2tp) on the input chain and gre on output as well (only accepting 1723 on input seems necessary).
5 ;;; Allow pptp vpn
chain=input action=accept protocol=tcp dst-address=11.22.33.44 dst-port=1723
6 X chain=input action=accept connection-state=new protocol=gre dst-address=11.22.33.44
7 X chain=output action=accept protocol=gre src-address=0.0.0.0/0
- Using ip firewall nat (to no avail)
- Connecting with and without encryption
- Connecting from 3 different WAN locations.
- Using different local and remote address configs (they all work locally and not remote)
- Creating a static pptp server binding with the dial-in user.
The only clue I have is that when I login on the LAN the server binding picks up the “secrets” [user login] name while the remote binding name is pptp-0 before it times out.
How can I trouble shoot this?
Is there a way to check the quality of the gre connection to see if or why it's not working?
Is this a firewall issue?
Is this an ISP issue?
Is this a RouterOS bug?
