Fortinet fortigate-100a Betriebsanweisung

Select Typical to configure typical settings.

Select Advanced to configure advanced settings.

Select Settings.

Select Challenge Handshake Authentication Protocol (CHAP).

Make sure that none of the other settings are selected.

Select the Networking tab.

Make sure that the following options are selected:
• TCP/IP
• QoS Packet Scheduler

Make sure that the following options are not selected:
• File and Printer Sharing for Microsoft Networks
• Client for Microsoft Networks

Select OK.

Connect to your ISP.

Start the VPN connection that you configured in the previous procedure.

Enter your PPTP VPN User Name and Password.

Select Connect.

In the connect window, enter the User Name and Password that you use to connect to 
your dialup network connection.

This user name and password is not the same as your VPN user name and password.

The FortiGate unit supports PPTP passthrough by configuring a port forwarding virtual 
IP to use port 1723. Normally, PPTP passthrough requires the generic routing 
encapsulation (GRE) protocol on IP port 47. When you configure PPTP passthrough 
using the following procedure, the FortiGate unit automatically enables the GRE 
protocol for PPTP passthrough configurations. You do not have to configure a 
separate GRE virtual IP.

You configure PPTP passthrough by configuring a dynamic port forwarding virtual IP 
address that uses port 1723. Then add the virtual IP address to a firewall policy. The 
following procedures describe how to configure PPTP passthrough to allow PPTP 
packets from the internet to connect to a PPTP server on the internal network. In this 
example, the PPTP server IP address is 192.168.23.1.

Go to Firewall > Virtual IP.

Select Create New.

Enter a name for the virtual IP, for example PPTP_pass.

Set the External Interface to external.