VPN

Hi, got the IPSEC tunnels working finally, now I need to get the PPTP VPN working properly for my Windows users.

It works fine, except it can only connect to LAN hosts (not Internet hosts) and DNS doesn't work. 

Firewall rules are as follows--PPTP VPN:
Proto     Source     Port     Destination     Port     Description
 TCP      *      *      *      *

Enable DNS forwarder is enabled.

What do I need to do to get my PPTP clients access to the Internet once they are connected to my LAN?

Thanks,
Gabe

Firewall rules are as follows--PPTP VPN:
Proto     Source     Port     Destination     Port     Description
 TCP      *      *      *      *

Enable DNS forwarder is enabled.

What do I need to do to get my PPTP clients access to the Internet once they are connected to my LAN?

Allow UDP -- it's needed for DNS lookups (at least port 53).

At the very least you will need to allow DNS access to the m0n0wall itself from the PPTP clients.  UDP 53 as mentioned above.

I'd just allow all TCP/UDP from the pptp clients if i were you, since you are already giving them blanket TCP access.

This of course changes if you are trying to hurt protocols like skype, in which case disabling UDP helps.