Is there anyway to pass all VPN PPTP traffic from a network range throuht a NGFW? I can do it for a single host if I define a static NAT rule for every host in my LAN but as I only have one public IP, I can't use a network or an address range in this NAT rule.
How can I do it?
PPTP uses GRE which has no ports, so if NAT is needed you cannot use dynamic NAT if there are multiple clients connecting. There is no specific PPTP NAT support in NGFW, so static NAT is only option.