PCAnywhere through a D-Link Router over DSL

OK, here's a problem I've been working on for a couple of weeks now.

Infrequently -- but enough that it's an issue -- I need to PCAnywhere to the systems at work. (Before anyone suggests it, due to the expense issue and the infrequent use, GoToMyPC does not seem to make sense.) I am going over DSL through a D-Link DI-614+ to the PCAnywhere host... Well, I want to, at least.

I have the proper ports in the router (TCP 5631, UDP 5632) set to connect to the internal IP of the host. I have followed the instructions on both the D-Link and Symantec sites (which are pretty much identical) to make sure I've done what's necessary.

The issue seems to be with either the router not truly opening the ports or the host not accepting the connection, though I'm not sure how to find out which. I can tracert and HTTP to the router, so I know I have the connection up until there. I can connect to PCAnywhere from inside the network (from the same remote computer, a laptop, which I've tried to use over the internet), so I know the host is taking those connections and the remote can connect.

Symantec suggests attempting to telnet to the IP and port from outside to see if the port is open, and that does not work. I've tried placing the host in a DMZ just to see if that would make a difference; it did not.

Internatlly the router is 10.1.1.100 and the host in question is a static 10.1.1.104. (The router is set for DHCP starting with 10.1.1.110, but four of our computers require static internal addresses.) There are no IP conflicts.

So, any ideas on what to check or how to diagnose this further?
DascalargoAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ShineOnCommented:
1)  Is this a new setup or have you had this working at one time?

2) What is your firewall?  

3) Can you set up a static NAT for the host PC to a public IP?

One problem with doing pcAnywhere over the Internet is that it needs to be able to find the host.  It can't find it using a private IP - it has to have an internet-routable IP address.  That usually means you need to have a secondary public IP address on your firewall with a static NAT to the host's private IP address, or if you want to expose it to the Internet, you'd need to give the host PC a second NIC with a public IP address, and in either case, hope nobody hacks in on your open pcAnywhere ports.

Last time I checked, GoToMyPC cost around $15 a month, is very secure, is much faster and easier to use than pcAnywhere, and does not require you to punch a hole in your firewall.  Seems pretty cheap, to me, even if you only use it once a month.  What is your hourly rate of pay?  $20, 25, more?  If it saves you even one hack attack per year, it's worth it, just in your time-savings alone, not to mention the potential lost man-hours for all the users.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
salb_80Commented:
Make sure your router is working with the latest firmware. When you log into the router click on the Tools tab and then on the Misc. button. On this screen disable gaming mode and UPNP.


IT may be a problem with MTU settings. Drop the MTU settings on the router by incements of 10 until you get to about 1400. You may want to adjust the MTU value directly on the PC. To do this you will need to download a program called Dr. TCP which can be found at the following: http://www.dslreports.com/drtcp.
ShineOnCommented:
One alternative to a static NATted IP is if you can port-map the pcAnywhere ports on the router to the private IP address of the host.  Some routers will let you do that.  Then, you would use the public IP of the router as the host address on your client.

Not all software accepts port redirection like that, though.  It depends on whether the host computer side uses the IP settings of the host to acknowledge communication from the client.
Maximize Customer Retention with Superior Service

The IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy for valuable how-to assets including sample agreements, checklists, flowcharts, and more to help build customer satisfaction and retention.

ShineOnCommented:
Of course, pcAnywhere works over static NAT, so it should work with that kind of port redirection.
DascalargoAuthor Commented:
I had tried most of the things ShineOn suggested already and had already updated the firmware and made the other changes suggested by salb 80, but I just realized I've had enough of this issue. I have other more pressing issues to deal with.

The answer I accepted was ShineOn's; while it didn't truly resolve this problem, his logic is what finally got me to check out GoToMyPC, regardless of the additional expense. I'm hoping I can find somewhere to hide this in a non-existent budget, but even if I can't I now have 45 days of emergency access to all of the machines in question. (The first through GoToMyPC and the others from that machine via PCAnywhere on our LAN.)

Thanks!

ShineOnCommented:
Did you try port-forwarding the pcAnywhere ports to the host PC address?  Just curious...
DascalargoAuthor Commented:
Yeah, the ports were supposedly forwarded even before you suggested it, which is what was so frustrating. That's all it should have taken. This shouldn't have been this complicated.
ShineOnCommented:
That's what is frustrating about pcAnywhere over the Internet.  I have successfully done it, but it takes too much effort, IMO.  GoToMyPC is so effortless and so secure it makes it hard to come up with a cost argument against it...
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Wireless Hardware

From novice to tech pro — start learning today.