Solved

Configuring Vigor 2600 for VPN

Posted on 2006-11-29
6
1,249 Views
Last Modified: 2008-01-09
Hi Guys

Im trying to setup a VPN connection to our office. We have a vigor 2600 bt broadband router which is connected to ISA 2004 server and ISA is connected to our network.

I've setup a VPN connection on ISA and configured it properly, so if i connect to ISA's external address from DMZ it works fine, but if connect from the Internet it just hangs at "verifying Username and Password" and then stops. Im using PPTP.

All the articles i've read are saying i need to forward the TCP port 1723 and IP protocol 47 (GRE) to the ISA's external address. I've opened up the TCP 1723 port on the vigor but i can find IP 47 any where on the Vigor. I've tried TCP 47 and UDP 47. but they dont seem to work.

Any ideas on why it only gets as far as "Verifying Username and password" and how i can forward the IP 47 port to ISA if thats what the problem is?

Thanks for your help.

Sho
0
Comment
Question by:ARMSTRONG_CRAVEN
6 Comments
 
LVL 2

Expert Comment

by:sushibilly
ID: 18045723
The Vigor is capable of supporting VPN connections, so why not use that  - you could then use Readius to forward the authentication process to your AD.
0
 
LVL 4

Expert Comment

by:Ravenbridge
ID: 18987088
Hi,

If you want to use the ISA server for VPN you only need to open up port 1723 for PPTP with protocol TCP

For IPSec/ESP passthrough it is port 500 protocol UDP
For L2TP passthrough it is port 1701 protocol UDP

You should also ensure that none of the Vigor VPN services are enabled under the Remote Access Control Setup

If this doesn't work you could try setting the ISA server in the DMZ but that is more risky.

Regards
Dennis
0
 

Author Comment

by:ARMSTRONG_CRAVEN
ID: 19443925
Hi Guys / Administrator

It was proving to be very difficult to get the Vigor to work with ISA box and i didnt get much help from the Experts Exchange. I was running out of time and i decide to call the Dreytec support line (very expensive), and they managed to offer me a solution. As we had multiple IPs addresses pointing to that router the traffic couldn't find its way back out again. They then configured some DMZ setting on the router and it worked.

Thanks for all the comments added.

Administrator could you please close this question and have the points refunded.

Thanks

Armstrong_Craven
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 19536936
PAQed with points refunded (150)

Computer101
EE Admin
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Downtime reduced, data recovered by utilizing an Experts Exchange Business Account Challenge The United States Marine Corps employs more than 200,000 active-duty Marines with operations in four continents, all requiring complex networking system…
The Need In an Active Directory enviroment, the PDC emulator provide time synchronization for the domain. This is important since Active Directory uses Kerberos for authentication.  By default, if the time difference between systems is off by more …
This tutorial demonstrates a quick way of adding group price to multiple Magento products.
Delivering innovative fully-managed cloud services for mission-critical applications requires expertise in multiple areas plus vision and commitment. Meet a few of the people behind the quality services of Concerto.

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now