Solved

Configuring Vigor 2600 for VPN

Posted on 2006-11-29
6
1,248 Views
Last Modified: 2008-01-09
Hi Guys

Im trying to setup a VPN connection to our office. We have a vigor 2600 bt broadband router which is connected to ISA 2004 server and ISA is connected to our network.

I've setup a VPN connection on ISA and configured it properly, so if i connect to ISA's external address from DMZ it works fine, but if connect from the Internet it just hangs at "verifying Username and Password" and then stops. Im using PPTP.

All the articles i've read are saying i need to forward the TCP port 1723 and IP protocol 47 (GRE) to the ISA's external address. I've opened up the TCP 1723 port on the vigor but i can find IP 47 any where on the Vigor. I've tried TCP 47 and UDP 47. but they dont seem to work.

Any ideas on why it only gets as far as "Verifying Username and password" and how i can forward the IP 47 port to ISA if thats what the problem is?

Thanks for your help.

Sho
0
Comment
Question by:ARMSTRONG_CRAVEN
6 Comments
 
LVL 2

Expert Comment

by:sushibilly
ID: 18045723
The Vigor is capable of supporting VPN connections, so why not use that  - you could then use Readius to forward the authentication process to your AD.
0
 
LVL 4

Expert Comment

by:Ravenbridge
ID: 18987088
Hi,

If you want to use the ISA server for VPN you only need to open up port 1723 for PPTP with protocol TCP

For IPSec/ESP passthrough it is port 500 protocol UDP
For L2TP passthrough it is port 1701 protocol UDP

You should also ensure that none of the Vigor VPN services are enabled under the Remote Access Control Setup

If this doesn't work you could try setting the ISA server in the DMZ but that is more risky.

Regards
Dennis
0
 

Author Comment

by:ARMSTRONG_CRAVEN
ID: 19443925
Hi Guys / Administrator

It was proving to be very difficult to get the Vigor to work with ISA box and i didnt get much help from the Experts Exchange. I was running out of time and i decide to call the Dreytec support line (very expensive), and they managed to offer me a solution. As we had multiple IPs addresses pointing to that router the traffic couldn't find its way back out again. They then configured some DMZ setting on the router and it worked.

Thanks for all the comments added.

Administrator could you please close this question and have the points refunded.

Thanks

Armstrong_Craven
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 19536936
PAQed with points refunded (150)

Computer101
EE Admin
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
This video discusses moving either the default database or any database to a new volume.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now