Results 1 to 4 of 4

Thread: how to open protocol 47 on a netscreen firewall?

  1. #1
    Join Date
    Sep 2005
    Posts
    58

    how to open protocol 47 on a netscreen firewall?

    I need help to configure NAT on NetScreen 25 Firewall. It looks my configuration is best and everything is working fine. But only the VPN is giving issue here. What I want that the users should be able to access VPN server through its in built feature not through NetScreen VPN. I want to avoid using the same. When I try to do the same there is a error on the screen saying that allow protocol 47. What does that means. I had enabled PPTP here. What other is pending. I am not able to find any reference on the same.

  2. #2
    Join Date
    Sep 2004
    Posts
    79
    That looks a bit complicated and NetScreen is not used by many. I had found a effectie Knowledge Base article which can provide you information on configuring PPTP inbound traffic via Firewall in NAT. So I hope there would be something here that can guide you to get rid of that error.

    Allow PPTP traffic inbound through a Juniper Firewall in NAT mode with only 1 publicly available IP address

  3. #3
    Join Date
    Sep 2004
    Posts
    102
    The Protocol 47 refers to some block ports in terms of NetScreen Firewall. Do you have documentation. If yes then it will guide you on detailed information to deal with the issue. PPTP is actually a predefined service. It comes with IP Protocol 47 and I am not sure that there is some link between them. Just try this, generate a new service and then allow all the ports here. You have to allow all udp and tcp ports and then add protocol 47 on all. Then check whether it works or not.

  4. #4
    Join Date
    Sep 2004
    Posts
    129
    After visiting a few threads I am able to find a composite solution. At some point you need to a policy that can allow trust network to access any untrusted location. Whichever that allow pptp here. This would be a simple trust to untrust policy. Now if the PPTP server lies behind the firewall and you want others to access you will have to configure MIP. Another thing you can try is creating a IP pool a group. Put the users in side the group and configure a tunnel via inbound policy.

Similar Threads

  1. Safari does not open after updating the firewall
    By Gandhik in forum Technology & Internet
    Replies: 3
    Last Post: 14-11-2010, 02:45 AM
  2. Disable Firewall while Playing Alpha Protocol
    By Apalachee in forum Video Games
    Replies: 6
    Last Post: 08-06-2010, 05:23 AM
  3. Juniper NetScreen not working in windows 7
    By Bearer in forum Windows Software
    Replies: 4
    Last Post: 07-02-2010, 05:44 AM
  4. Open Port and set IP protocol for Windows Firewall
    By Jamaima in forum Networking & Security
    Replies: 2
    Last Post: 20-02-2009, 09:52 PM
  5. Replies: 6
    Last Post: 07-10-2008, 03:27 PM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Page generated in 1,711,665,359.08595 seconds with 17 queries