I just installing a vpn server and tested with the windows vpn built in client. The connection works when i use my internal ip address to connect but when i use my wan ip to connect from the internet i cant connect. I already port forwarded the ports tcp 1723 and udp 500 and 50-51 to the server. The client pc is running windows vista.

Thanks

Make sure you've enabled L2TP and IPSec passthrough in your router.

How can i do this on my router im not too sure?

http://www.dlink.com/products/?sec=1&pid=530

Thanks

Firewall settings, Advanced, Application Level Gateway Configuration (listed in your manual as VPN Passthrough)

I checked and the ipsec is already enabled. There seems to be no option for l2tp though.

what about PPTP

Yea that is also enabled.

Interesting. When you try to connect externally, does the client connect but hang at verifying username/password?

Yes i just checked and you got it. It hangs and stops at verifying user name and password..... I guess its connecting but not getting through. I find it funny though because the username and password work when i try to connect from my lan. I disabled the firewall on my server totally and still no help.

I just realized something... I can't believe I didn't think of this earlier.

All home routers have limited VPN support. VPNs require non IP protocols... particularly IPSec/L2TP/PPTP/GRE. In general, most home routers can only run IP/TCP/UDP, but with the advent of VPN support it has given some special circumstances in the SPI firewalls. Unfortunately, one one of these connection (include incoming and outgoing) can be made. So, if you are trying to reverse the connection on yourself through your own router, it will fail since the router can not pass the outgoing and incoming connections at the same time. You must try the VPN from a computer external to your router.

There is a solution but it has 2 caveats. 1.) It creates a security void on your network and 2.) it is not guaranteed.

If you chose to attempt the fix, find the DMZ setting for you router and set it to the VPN server's IP address. Remember, this is at your own risk and does have some problems with security.

So your saying if i connect from someone else's connection it should connect. It basically hangs because i'm trying to connect to my network from my own connection? I'll try to connect from another place later tonight and let you know what happens.

I just tested at my friends house at the moment and it doesnt connect still.

The type of VPN in the VPN properties is set to automatic. Not sure if i gotta choose PPTP or L2TP IPSec. The error message when i connect with automatic setting is.......
Error 806..the vpn connection could not be completed. the failure might be between your computer and the vpn server is not configured to allow GRE protocol packets.

When i choose L2TP IPSEC i get....
Error 766... A certificate could not be found. Connections that use the L2TP protocol over IPSec require the installation of a machine certificate.

When i choose the PPTP i get the same error message as automatic.

Thanks for trying to help and sry for all the posts.

EDIT: Forgot to add that you said most home routers have limited vpn support because the routers only have ip/tcp/udp. Says here my router supports TCP/IP, PPTP, UDP/IP, L2TP, ICMP/IP, IPSec..Click the view full product specification.
http://www.windowsmarketplace.com/details.aspx?view=review&itemid=3130642#productSpecs