Solved

VPN connection with D-Link router

Posted on 2002-05-28
8
1,424 Views
Last Modified: 2007-12-19
All my machines at home are behind a d-link with internal static IPs. I have VPN server on a win2k server.
I open port 1723 and 47 from the router to this server.

When I tried to make a connection to this server from work, it goes:
- Connecting to xxx.xxx.xxx.xxx(public IP to the Router)
- Verifying username and password
.... then it drops as
- Disconected with 678 error: There was no answer

I did what this link shows to do. http://www.microsoft.com/technet/treeview/default.asp?url=/TechNet/columns/profwin/pw0201.asp

What am I missing here? can anyone help? I really appreciate it.
0
Comment
Question by:nghlan
  • 4
  • 3
8 Comments
 
LVL 16

Expert Comment

by:The--Captain
Comment Utility
Sounds like your dlink is not allowing inbound GRE to your VPN client.  I'm not sure if the dlink allows forwarding of specific protocols (GRE is ip protocol 50 - not port 50, but ip protocol 50), so you may just have to forward all inbound requests (which I think the dlink *can* do) to your VPN client.  You may have to deal with some address translation issues as well, but I have heard PPTP behind a NAT box is possible.  Do some searches for docs regarding PPTP (PoPToP) behind a firewall - I think there are probably even a few old EE posts regarding this, if memory servers me correctly (anyone catch the Iron Chef reference?).

Cheers,
-Jon
0
 

Author Comment

by:nghlan
Comment Utility
How do you open protocol 47? I looked through dlink user manual but couldn't find any tips on forwarding protocols.
I also searched for old posts regarding to this problem but no luck so far.

Thanks for your help in advance.
Nghlan
0
 
LVL 16

Accepted Solution

by:
The--Captain earned 50 total points
Comment Utility
Oops - looks like I was thinking about IPSEC when I was talking protocol numbers - indeed, GRE is protocol 47.  Can you just pass/NAT all inbound traffic to your VPN client?  Might that work?

Cheers,
-Jon
 
0
 
LVL 16

Expert Comment

by:The--Captain
Comment Utility
Also, try an EE search string of:

pptp AND firewall

or:

gre AND firewall

I came up with a tone of posts when I did that - some of then seemed relevant.

Cheers,
-Jon

0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
Which model D-Link?
 What if I have a Web, VPN or other server behind the DI-701 I wish to be able to access remotely?  

 You will need to set up Virtual Services to map the VPN or Web port to the server behind the DI-701.  
0
 

Author Comment

by:nghlan
Comment Utility
I have looked through old EE posts and tried many things on this dlink router but it still didn't work the way I wanted. So I opened DMZ to the server and it worked. I guess you are right The-Captain, dlink not support forwarding protocols. I think I will need to leave the server in DMZ zone for now until I find the right solution.

One last question I have is if I can drag/drop files from the client to server through VPN or there's anyway around to do it beside FTP? I can't seem be able to do it.

BTW, I have a DI-704 and I am able to open many virtual services.

Thanks all for your help.
0
 
LVL 16

Expert Comment

by:The--Captain
Comment Utility
>One last question I have is if I can drag/drop files from
>the client to server through VPN or there's
>anyway around to do it beside FTP? I can't seem be able
>to do it.

You should be able to run any IP-based file exchange protocol (i.e. ftp, scp, http, netbios, etc).  Getting them to work will be simply a matter of configuring them properly on both sides (some will be easier than others).

Cheers,
-Jon

0
 

Author Comment

by:nghlan
Comment Utility
Thanks for your help!
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now