I have an interesting problem with the PPTP Conntrack patch. The server is behind a firewall performing NAT, and I have port forwards enabled for both GRE (protocol 47) and PPTP (tcp 1723). Most clients can connect without issues, however, there are two clients that seem to have the same problem. They are able to connect, but are disconnected by a RST from the server on the PPTP control channel. It seems that the PPTP server is sending out SET-LINK packets and never receives an ACK or reply to those packets. Eventually the server gives up and RSTs the connection. This happens on the client 3 minutes after establishing the connection. Has anyone experienced this? I'm running kernel 2.4.20 with P-O-M from late march CVS snapshot (It doesn't seem to have changed much since). iptables just recently upgraded to 1.2.8, without resolving the issue. Just to make clear - most clients connect fine, just these two instances seem to have the problem, and there isn't really much that makes them very different. They're running Windows XP Pro. (The server is Windows 2000 SP3 Server) If anyone can help it would be greatly appreciated. Best Regards, Giles
