[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 338
  • Last Modified:

VPN Setup

Which Ports do I enable on my Linksys Broadband router to support VPN passthrough to my RRAS/VPN Server?
0
webward3
Asked:
webward3
  • 5
  • 4
  • 2
1 Solution
 
tlbrittainCommented:
Depends on how the VPN is configured.  Could be TCP or UDP, and then the port numbers it is negotiating accross.  give us some info on the VPN.  Also What Protocols is the VPN using?
0
 
webward3Author Commented:
I'm using PPTP and L2TP.
0
 
tlbrittainCommented:
Some excerpts I have found:

PPTP uses port 1723 to establish and then uses the GRE 47 for the tunnel.

"PPTP can be used with most firewalls and routers by enabling traffic destined for port 1723 to be routed through the firewall or router."

L2TP encapsulates original packets inside a PPP frame (performing compression when possible) and inside a User Datagram Protocol (UDP)-type packet assigned to port 1701.

http://www.steveneppler.com/blog/2005/12/07/pptp-and-l2tp-ports
0
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

 
webward3Author Commented:
Much thanks. I will opened the suggested ports on my router and see if it resolved the issue. I will let you know.
0
 
tlbrittainCommented:
If that doesn't work you will want to check with your ISP (unless you are leasing a line, then it "should" be wide open) to see what ports if any they block/deny
0
 
Arthur_MinoCommented:
G'day,

Keep in mind that for VPN passthrough is not only ports on the TCP 1723 but your router must support Generic Route Encapsulation (GRE) protocol forwarding. With out it you VPN tunnel will not work.

Hope this helps,

Cheers,

Arthur

0
 
tlbrittainCommented:
I guess I didn't state that more clear above but Arthur Mino is correct.
0
 
Arthur_MinoCommented:
G'day tlbrittain,

Thank you for your feed back.

Cheers,

Arthur
0
 
webward3Author Commented:
Hey guys - I really appreciate your comments/suggestions. One question...does a linksys router - WRT300N support all these tunnels/ports (1723, 1701, 47)? Especially GRE?
0
 
tlbrittainCommented:
This website has some hardware info on your router:
http://www.hardware.info/en-US/productdb/bGNkapiTmJPK/viewproduct/Linksys_WirelessN_Broadband_Router/

Here is an excerpt from the "user guide" of this website:
http://www.linksys.com/servlet/Satellite?c=L_Product_C2&childpagename=US%2FLayout&cid=1144763513404&pagename=Linksys%2FCommon%2FVisitorWrapper

The Security Tab - VPN Passthrough
The VPN Passthrough screen allows you to allow VPN tunnels using IPSec, L2TP, or PPTP protocols to pass
through the Router.
VPN Passthrough
IPSec Passthrough. IPSec (Internet Protocol Security) is a suite of protocols used to implement secure exchange
of packets at the IP layer. To allow IPSec Passthrough, click the Enabled button. To disable IPSec Passthrough,
click the Disabled button.
L2TP Passthrough. Layer 2 Tunneling Protocol is the method used to enable Point-to-Point sessions via the
Internet on the Layer 2 level. To allow L2TP tunnels to pass through the Router, click the Enabled button. To
disable L2TP Passthrough, click the Disabled button.
PPTP Passthrough. PPTP (Point-to-Point Tunneling Protocol) Passthrough allows the Point-to-Point (PPP) to be
tunneled through an IP network. To allow PPTP Passthrough, click the Enabled button. To disable PPTP
Passthrough, click the Disabled button.
When you have finished making changes to this screen, click the Save Settings button to save the changes, or
click the Cancel Changes button to undo your changes. For more information, click Help.
0
 
webward3Author Commented:
Thanks for all of your assistance.
0

Featured Post

New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

  • 5
  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now