Junos OS

 View Only
last person joined: 13 hours ago 

Ask questions and share experiences about Junos OS.

  • 1.  PPTP session - CGNAT

    Posted 04-16-2020 13:18

    Folks,

    I  have a question, a client wants to establish a ppt session between a client and server, however, this connection goes through CGNAT. At this point this session(pptp) is not working so I wonder if this sort of session is supported or does exit a workaround for it? 

    Thanks.unnamed.png



  • 2.  RE: PPTP session - CGNAT

    Posted 04-16-2020 15:11

    Hello Mrandersono:

    According to the documentation, the MS-MIC does support the PPTP ALG:

     

    https://www.juniper.net/documentation/en_US/junos-space-apps/edge-services-director1.0/topics/topic-map/nat-junos-cgn-implementations.html#jd0e852

     

    Moreover, that document says the PPTP ALG is enabled by default (see Table 3 in there), so you should not need to do anything beyond the usual CGNAT configuration to have that ALG active. 

    Captura de Pantalla 2020-04-16 a la(s) 18.56.16.png

    However, I never played with such a configuration scenario. Perhaps someone else could say if this application scenario has been successfully tested.

     

    Regards, Rogelio

     

     



  • 3.  RE: PPTP session - CGNAT
    Best Answer

    Posted 04-16-2020 19:50

    Hello,

     

    @ralvez wrote:

     

    Moreover, that document says the PPTP ALG is enabled by default (see Table 3 in there),

     

     

     

    No it is NOT enabled by default. All this table 3 says is that PPTP ALG code is available on MS-MPC and the default name for this ALG is "junos-pptp"

     

     

     

    @mrandersono wrote:

    Folks,
     At this point this session(pptp) is not working so I wonder if this sort of session is supported or does exit a workaround for it? 

     

    You don't need a workaround, You just need to enable PPTP ALG in Your NAT rule. Example confiig:

     

    set services nat rule BLAH term 1 from application junos-pptp
set services nat rule BLAH term 1 then translated <etc etc>
    <other NAT rule terms to follow>

     

     

    HTH

    Thx

    Alex

     

     



  • 4.  RE: PPTP session - CGNAT

    Posted 04-17-2020 05:43
    @aarseniev wrote:

    Hello,

     

    @ralvez wrote:

     

    Moreover, that document says the PPTP ALG is enabled by default (see Table 3 in there),

     

     

     

    No it is NOT enabled by default. All this table 3 days is that PPTP ALG code is available on MS-MPC and the default name for this ALG is "junos-pptp"

     

     

     

    @mrandersono wrote:

    Folks,
     At this point this session(pptp) is not working so I wonder if this sort of session is supported or does exit a workaround for it? 

     

    You don't need a workaround, You just need to enable PPTP ALG in Your NAT rule. Example confiig:

     

    set services nat rule BLAH term 1 from application junos-pptp
set services nat rule BLAH term 1 then translated <etc etc>
    <other NAT rule terms to follow>

     

     

    HTH

    Thx

    Alex

     

     

    Thanks, mate, I'll be working on it, I'll be in touch soon.