Question : To Bridge or not to Bridge using ADSL Modem and Symantec 300 Series Gateway Security Appliance

Experts!

I'm setting up a couple of Microsoft Networks that are single server networks with DSL Broadband connectivity via ISP supplied ADSL Modems. I need to use Symantec 320 and 360R Security Gateway Security Appliances (SGS) for VPN. I'm trying to determine the best way to configure the DSL Modems and SGS appliances to play nice together and enable local users to access the Internet and remote users to establish VPN connectivity to the Domain. I don't suppose I can use the SGS directly with an ADSL connection and get rid of the ADSL Modem. Only option is probably some sort of transparent bridging setup.

The ISP is providing "Sticky IP's" via PPPOe DSL service and the SGS appliances are able to function as the primary interface with the ADSL Modem configured as a bridge. However, I've had connectivity problems (no client Internet access) using the ADSL Modem as a bridge and I'm not sure if that's the best way to go. In addition to the SGS appliances, I'm also using a couple of other Symantec security products, Symantec Client Security 2.0 and Symantec Client VPN 8.0.

The Servers have two NIC's each so I have a dedicated WAN and LAN for each network. A Network Diagram (400K PDF) can be referenced at: http://fgpros.fastkat.com/esserbit/net.pdf

Given what I have, what do you think would be the best way to proceed?

Thanks!
Brian  

Answer : To Bridge or not to Bridge using ADSL Modem and Symantec 300 Series Gateway Security Appliance

For PPTP passthrough, you need to forward TCP port 1723, and GRE/protocol #47