Solved

VPN support from a LinkSYS BEFWS11 S4 v.2 Router

Posted on 2004-04-20
2
576 Views
Last Modified: 2013-11-29
I can create a VPN connection within my network behind the firewall. I have a W2K Active Directory Domain employing a single internal RRAS server (also W2K). The internet gateway is the LinkSYS router mentioned above. I am trying to see if I can access my network via a VPN connection outside of my internal network. I know that the LinkSYS router is probably not designed for this but I have been able to use it's port forwarding options to gain access with pcANYWHERE and Windows Terminal Services.

From the information I have, I know that PPTP employs port 1723 via TCP and L2TP uses port 1701 over UDP. I have forwarded those port calls to my internal RRAS server so that when I call upon the public IP address of my router with a VPN session, the call should go to the RRAS server and authenticate. I also have the PPTP and IPSec pass through options enabled. However, this fails and I don't find anything in the event logs for a clue.

I am mainly doing this to finish my MCSE so this is not something I would not recommend in practice, but I would like to see if it could make it work as I have described. If the LinkSYS Router will not allow this then I would like to know now instead of wasting any more time.

Thanks for any replys.
0
Comment
Question by:habanagold
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 125 total points
ID: 10868163
There is a small sentence in the user guide that says that if you're using port-forwarding, you must disable DHCP server. Not sure why.
Also, PPTP uses not just 1723, but protocol #47 (GRE) to establish the tunnel. GRE has no concept of ports, so about your only option is to put the server's ip in as the DMZ host.
0
 
LVL 1

Author Comment

by:habanagold
ID: 10869644
Setting up the W2K Router as the DMZ host in the LinkSYS worked. I am able to connect remotely without a problem. In fact, I went to my neighborhood Panera Bread which has WI-FI and this is where I am now testing this.

The only thing I have noticed that does not work is access to a DFS share. I can connect to any server share or map a drive, but I can not access the DFS share. Any ideas on resolving this? Also, can you shed any light on the security risks of leaving the W2K router in the DMZ? I am sure there are some.
0

Featured Post

Save the day with this special offer from ATEN!

Save 30% on the CV211 using promo code EXPERTS30 now through April 30th. The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question