I need help setting up my Access Point Router for use with WinPoet and Contivity VPN Client
Posted on 2003-11-01
I'm living on a compound in Shanghai, which has wired us up using a LAN.
I've been assigned IP address 10.0.0.14 & 10.0.0.15
I'm using a simple Hub for my two PC's, both happily interconnectable via NetBEUI
Both have firewall SW installed.
The ISP of our compound facilitates PPPoE through WinPoet.
I normally do not need this facility, but for my companies VPN I first have to set up PPoE, using WinPoet and then I can use Contivity VPN Client of Nortel Networks, to enter the VPN.
This all works fine.
Now I have this Notebook from the company and two docking stations, one at work, one at home and now the trouble starts:
Logging in the LAN at work, I need one set of TCP/IP settings, for the Compound I need another. I found my way around this, making use of the fact that the docking-NIC is different from the build-in NIC with plug on the side. So at work I use the build-in NIC (have to connect the LAN separately from the docking) and at home the docking NIC.
Again, still all works fine.
Now I get this new Notebook, which has the build-in NIC at the back, so out of reach while in the dock. No pain, it has Centronics, so I bought myself an Access Point Router. Of course this gets too complicated for my knowledge, because now I cannot figure out how to get WinPoet make the PPoE connection (anyway it does not), while at the same time the Access Point Router (Agilan; WLAN 802.11b) offers to connect PPPoE. I've put username & password for the IPS in, but I see no difference. Contivity VPN client does not connect to the VPN.
I've tried DMZ (Demilitarized Zone) and have the option to use UPnP forwarding, but the setting requires.
Anyone that has useful suggestions, welcome to help me out here.
Some info from the "settings panel" of the Access Point Router are:
This feature let your router act as a"firewall".
NAT allows all of the computers on your network to use one IP addess.
DMZ Host IP Addresss can allow one local user to be exposed to the Internet. As local user wish to use some special-purpose service such as internet game or Video-conferencing. If you had set many WAN Alias IP's, you can set Multiple DMZ (DeMilitarized Zone) hosts for different IP.
Virtual Servers and Special Application
If you configure the gateway as a virtual server, remote users accessing services such as Web or FTP at your local site via public IP addresses can be automatically redirected to local servers configured with private IP address. In other words, depending on the requested service (TCP/UDP port number), the gateway redirects the external service request to the appropriate server.
You can define up to 10 application profiles and If you had set many WAN Alias IP's, select one of the public IP's as the Virtual Server. Some applications require multiple connections, such as Internet gaming, video conferencing, Internet telephony and others. These applications cannot work when Network Address Translation (NAT) is enabled. If you need to run applications that require multiple connections, enter the service ports associated with an application.
I can selet an entry (1 - 10);set a name and a enable/disable and for each entry srevice port X ~ Y (1~65535)
Dynamic DNS allows you to update your dynamic IP address with one or many dynamic DNS services. So anyone can access your FTP or Web service on your computer using DNS-like address. I can en/disable, choose retry time, ddns server (MyDynDNS/No-IP/DtDNS) and fill in Host Nam/User Name/Password
UPnP Port Forwarding allows Internet Users to access Servers on your LAN. It also allows you to configure two-way communications, Game Servers, and other Internet applications with special requirements.
a table as follows:
Applications Name//Ext. Port//Protocol TCP//Protocol UDP//Int. Port IP Address Enable
1. "WinPoET v2.51 Connection"//2(?)//"on"//"off"//3(?)//192.168.1."-"//"on"
same for 2 - 10
Don't know how to use this.
Most applications are supported transparently by the router. But sometimes it is not clear which PC should receive an incoming connection. In this case, you can define the application as a "Special Application" to enable the specific traffic to come into LAN side.
Please note: Special Application should be triggered from LAN side to be functional, i.e. the communication should be initialized from LAN side, and the defined "Incoming Port Range" will be reserved for the Internet application.
Application Name//Trigger Port Range//Incoming Port Range
1. <<name>> 0~0 0 ~ 0
same for 2 - 10
Don't know how to use this.