Solved

Configuring Vigor 2600 for VPN

Posted on 2006-11-29
6
1,250 Views
Last Modified: 2008-01-09
Hi Guys

Im trying to setup a VPN connection to our office. We have a vigor 2600 bt broadband router which is connected to ISA 2004 server and ISA is connected to our network.

I've setup a VPN connection on ISA and configured it properly, so if i connect to ISA's external address from DMZ it works fine, but if connect from the Internet it just hangs at "verifying Username and Password" and then stops. Im using PPTP.

All the articles i've read are saying i need to forward the TCP port 1723 and IP protocol 47 (GRE) to the ISA's external address. I've opened up the TCP 1723 port on the vigor but i can find IP 47 any where on the Vigor. I've tried TCP 47 and UDP 47. but they dont seem to work.

Any ideas on why it only gets as far as "Verifying Username and password" and how i can forward the IP 47 port to ISA if thats what the problem is?

Thanks for your help.

Sho
0
Comment
Question by:ARMSTRONG_CRAVEN
6 Comments
 
LVL 2

Expert Comment

by:sushibilly
ID: 18045723
The Vigor is capable of supporting VPN connections, so why not use that  - you could then use Readius to forward the authentication process to your AD.
0
 
LVL 4

Expert Comment

by:Ravenbridge
ID: 18987088
Hi,

If you want to use the ISA server for VPN you only need to open up port 1723 for PPTP with protocol TCP

For IPSec/ESP passthrough it is port 500 protocol UDP
For L2TP passthrough it is port 1701 protocol UDP

You should also ensure that none of the Vigor VPN services are enabled under the Remote Access Control Setup

If this doesn't work you could try setting the ISA server in the DMZ but that is more risky.

Regards
Dennis
0
 

Author Comment

by:ARMSTRONG_CRAVEN
ID: 19443925
Hi Guys / Administrator

It was proving to be very difficult to get the Vigor to work with ISA box and i didnt get much help from the Experts Exchange. I was running out of time and i decide to call the Dreytec support line (very expensive), and they managed to offer me a solution. As we had multiple IPs addresses pointing to that router the traffic couldn't find its way back out again. They then configured some DMZ setting on the router and it worked.

Thanks for all the comments added.

Administrator could you please close this question and have the points refunded.

Thanks

Armstrong_Craven
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 19536936
PAQed with points refunded (150)

Computer101
EE Admin
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
This Micro Tutorial will teach you how to censor certain areas of your screen. The example in this video will show a little boy's face being blurred. This will be demonstrated using Adobe Premiere Pro CS6.
This Micro Tutorial will give you a basic overview how to record your screen with Microsoft Expression Encoder. This program is still free and open for the public to download. This will be demonstrated using Microsoft Expression Encoder 4.

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question