Solved

VPN support from a LinkSYS BEFWS11 S4 v.2 Router

Posted on 2004-04-20
2
572 Views
Last Modified: 2013-11-29
I can create a VPN connection within my network behind the firewall. I have a W2K Active Directory Domain employing a single internal RRAS server (also W2K). The internet gateway is the LinkSYS router mentioned above. I am trying to see if I can access my network via a VPN connection outside of my internal network. I know that the LinkSYS router is probably not designed for this but I have been able to use it's port forwarding options to gain access with pcANYWHERE and Windows Terminal Services.

From the information I have, I know that PPTP employs port 1723 via TCP and L2TP uses port 1701 over UDP. I have forwarded those port calls to my internal RRAS server so that when I call upon the public IP address of my router with a VPN session, the call should go to the RRAS server and authenticate. I also have the PPTP and IPSec pass through options enabled. However, this fails and I don't find anything in the event logs for a clue.

I am mainly doing this to finish my MCSE so this is not something I would not recommend in practice, but I would like to see if it could make it work as I have described. If the LinkSYS Router will not allow this then I would like to know now instead of wasting any more time.

Thanks for any replys.
0
Comment
Question by:habanagold
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 125 total points
ID: 10868163
There is a small sentence in the user guide that says that if you're using port-forwarding, you must disable DHCP server. Not sure why.
Also, PPTP uses not just 1723, but protocol #47 (GRE) to establish the tunnel. GRE has no concept of ports, so about your only option is to put the server's ip in as the DMZ host.
0
 
LVL 1

Author Comment

by:habanagold
ID: 10869644
Setting up the W2K Router as the DMZ host in the LinkSYS worked. I am able to connect remotely without a problem. In fact, I went to my neighborhood Panera Bread which has WI-FI and this is where I am now testing this.

The only thing I have noticed that does not work is access to a DFS share. I can connect to any server share or map a drive, but I can not access the DFS share. Any ideas on resolving this? Also, can you shed any light on the security risks of leaving the W2K router in the DMZ? I am sure there are some.
0

Featured Post

PeopleSoft Has Never Been Easier

PeopleSoft Adoption Made Smooth & Simple!

On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool.  Claim Your Free WalkMe Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

737 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question