ARMSTRONG_CRAVEN
asked on
Configuring Vigor 2600 for VPN
Hi Guys
Im trying to setup a VPN connection to our office. We have a vigor 2600 bt broadband router which is connected to ISA 2004 server and ISA is connected to our network.
I've setup a VPN connection on ISA and configured it properly, so if i connect to ISA's external address from DMZ it works fine, but if connect from the Internet it just hangs at "verifying Username and Password" and then stops. Im using PPTP.
All the articles i've read are saying i need to forward the TCP port 1723 and IP protocol 47 (GRE) to the ISA's external address. I've opened up the TCP 1723 port on the vigor but i can find IP 47 any where on the Vigor. I've tried TCP 47 and UDP 47. but they dont seem to work.
Any ideas on why it only gets as far as "Verifying Username and password" and how i can forward the IP 47 port to ISA if thats what the problem is?
Thanks for your help.
Sho
Im trying to setup a VPN connection to our office. We have a vigor 2600 bt broadband router which is connected to ISA 2004 server and ISA is connected to our network.
I've setup a VPN connection on ISA and configured it properly, so if i connect to ISA's external address from DMZ it works fine, but if connect from the Internet it just hangs at "verifying Username and Password" and then stops. Im using PPTP.
All the articles i've read are saying i need to forward the TCP port 1723 and IP protocol 47 (GRE) to the ISA's external address. I've opened up the TCP 1723 port on the vigor but i can find IP 47 any where on the Vigor. I've tried TCP 47 and UDP 47. but they dont seem to work.
Any ideas on why it only gets as far as "Verifying Username and password" and how i can forward the IP 47 port to ISA if thats what the problem is?
Thanks for your help.
Sho
The Vigor is capable of supporting VPN connections, so why not use that - you could then use Readius to forward the authentication process to your AD.
Hi,
If you want to use the ISA server for VPN you only need to open up port 1723 for PPTP with protocol TCP
For IPSec/ESP passthrough it is port 500 protocol UDP
For L2TP passthrough it is port 1701 protocol UDP
You should also ensure that none of the Vigor VPN services are enabled under the Remote Access Control Setup
If this doesn't work you could try setting the ISA server in the DMZ but that is more risky.
Regards
Dennis
If you want to use the ISA server for VPN you only need to open up port 1723 for PPTP with protocol TCP
For IPSec/ESP passthrough it is port 500 protocol UDP
For L2TP passthrough it is port 1701 protocol UDP
You should also ensure that none of the Vigor VPN services are enabled under the Remote Access Control Setup
If this doesn't work you could try setting the ISA server in the DMZ but that is more risky.
Regards
Dennis
ASKER
Hi Guys / Administrator
It was proving to be very difficult to get the Vigor to work with ISA box and i didnt get much help from the Experts Exchange. I was running out of time and i decide to call the Dreytec support line (very expensive), and they managed to offer me a solution. As we had multiple IPs addresses pointing to that router the traffic couldn't find its way back out again. They then configured some DMZ setting on the router and it worked.
Thanks for all the comments added.
Administrator could you please close this question and have the points refunded.
Thanks
Armstrong_Craven
It was proving to be very difficult to get the Vigor to work with ISA box and i didnt get much help from the Experts Exchange. I was running out of time and i decide to call the Dreytec support line (very expensive), and they managed to offer me a solution. As we had multiple IPs addresses pointing to that router the traffic couldn't find its way back out again. They then configured some DMZ setting on the router and it worked.
Thanks for all the comments added.
Administrator could you please close this question and have the points refunded.
Thanks
Armstrong_Craven
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.