?
Solved

Configuring Vigor 2600 for VPN

Posted on 2006-11-29
6
Medium Priority
?
1,256 Views
Last Modified: 2008-01-09
Hi Guys

Im trying to setup a VPN connection to our office. We have a vigor 2600 bt broadband router which is connected to ISA 2004 server and ISA is connected to our network.

I've setup a VPN connection on ISA and configured it properly, so if i connect to ISA's external address from DMZ it works fine, but if connect from the Internet it just hangs at "verifying Username and Password" and then stops. Im using PPTP.

All the articles i've read are saying i need to forward the TCP port 1723 and IP protocol 47 (GRE) to the ISA's external address. I've opened up the TCP 1723 port on the vigor but i can find IP 47 any where on the Vigor. I've tried TCP 47 and UDP 47. but they dont seem to work.

Any ideas on why it only gets as far as "Verifying Username and password" and how i can forward the IP 47 port to ISA if thats what the problem is?

Thanks for your help.

Sho
0
Comment
Question by:ARMSTRONG_CRAVEN
4 Comments
 
LVL 2

Expert Comment

by:sushibilly
ID: 18045723
The Vigor is capable of supporting VPN connections, so why not use that  - you could then use Readius to forward the authentication process to your AD.
0
 
LVL 4

Expert Comment

by:Ravenbridge
ID: 18987088
Hi,

If you want to use the ISA server for VPN you only need to open up port 1723 for PPTP with protocol TCP

For IPSec/ESP passthrough it is port 500 protocol UDP
For L2TP passthrough it is port 1701 protocol UDP

You should also ensure that none of the Vigor VPN services are enabled under the Remote Access Control Setup

If this doesn't work you could try setting the ISA server in the DMZ but that is more risky.

Regards
Dennis
0
 

Author Comment

by:ARMSTRONG_CRAVEN
ID: 19443925
Hi Guys / Administrator

It was proving to be very difficult to get the Vigor to work with ISA box and i didnt get much help from the Experts Exchange. I was running out of time and i decide to call the Dreytec support line (very expensive), and they managed to offer me a solution. As we had multiple IPs addresses pointing to that router the traffic couldn't find its way back out again. They then configured some DMZ setting on the router and it worked.

Thanks for all the comments added.

Administrator could you please close this question and have the points refunded.

Thanks

Armstrong_Craven
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 19536936
PAQed with points refunded (150)

Computer101
EE Admin
0

Featured Post

NEW Veeam Backup for Microsoft Office 365 1.5

With Office 365, it’s your data and your responsibility to protect it. NEW Veeam Backup for Microsoft Office 365 eliminates the risk of losing access to your Office 365 data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes you might need to configure routing based not only on destination IP address, but also on a combination of destination IP address (or hostname) and destination port number. I will describe a method how to accomplish this with free tools. …
Enterprise networks where VoIP phones have been deployed frequently use port configurations that allow both a computer and an IP phone to be plugged into the same switch port but use different VLANs. On Cisco equipment I'm referring to the "native V…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Suggested Courses

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question