?
Solved

VPN support from a LinkSYS BEFWS11 S4 v.2 Router

Posted on 2004-04-20
2
Medium Priority
?
583 Views
Last Modified: 2013-11-29
I can create a VPN connection within my network behind the firewall. I have a W2K Active Directory Domain employing a single internal RRAS server (also W2K). The internet gateway is the LinkSYS router mentioned above. I am trying to see if I can access my network via a VPN connection outside of my internal network. I know that the LinkSYS router is probably not designed for this but I have been able to use it's port forwarding options to gain access with pcANYWHERE and Windows Terminal Services.

From the information I have, I know that PPTP employs port 1723 via TCP and L2TP uses port 1701 over UDP. I have forwarded those port calls to my internal RRAS server so that when I call upon the public IP address of my router with a VPN session, the call should go to the RRAS server and authenticate. I also have the PPTP and IPSec pass through options enabled. However, this fails and I don't find anything in the event logs for a clue.

I am mainly doing this to finish my MCSE so this is not something I would not recommend in practice, but I would like to see if it could make it work as I have described. If the LinkSYS Router will not allow this then I would like to know now instead of wasting any more time.

Thanks for any replys.
0
Comment
Question by:habanagold
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 10868163
There is a small sentence in the user guide that says that if you're using port-forwarding, you must disable DHCP server. Not sure why.
Also, PPTP uses not just 1723, but protocol #47 (GRE) to establish the tunnel. GRE has no concept of ports, so about your only option is to put the server's ip in as the DMZ host.
0
 
LVL 1

Author Comment

by:habanagold
ID: 10869644
Setting up the W2K Router as the DMZ host in the LinkSYS worked. I am able to connect remotely without a problem. In fact, I went to my neighborhood Panera Bread which has WI-FI and this is where I am now testing this.

The only thing I have noticed that does not work is access to a DFS share. I can connect to any server share or map a drive, but I can not access the DFS share. Any ideas on resolving this? Also, can you shed any light on the security risks of leaving the W2K router in the DMZ? I am sure there are some.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
WARNING:   If you follow the instructions here, you will wipe out your VTP and VLAN configurations.  Make sure you have backed up your switch!!! I recently had some issues with a few low-end Cisco routers (RV325) and I opened a case with Cisco TA…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses
Course of the Month12 days, 17 hours left to enroll

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question