I have an EdgeRouter (Lite 3port) configured with three interfaces - eth0 is the WAN, eth1 is a public subnet provided by the ISP, and eth2 is a private LAN.
I've removed all the firewall rules. I do NAT between eth0 (WAN) and eth2 (LAN).
I have a bunch of VMs on eth1 with PPTP servers. Each has a unique IP assigned in the public subnet.
The issue I have is that TCP 1723 is reachable on each VM, but the protocol 47 traffic into the VMs doesn't make it.
I have a Cisco router that works correctly. It seems like I'm missing a routing rule around protocol 47, but I'm lost at this point getting it to work.
