Solved

Setting up VPN with pfSense

Posted on 2011-02-23
5
1,508 Views
Last Modified: 2012-05-11
I am trying to setup a VPN at my workplace with pfSense.

We want to use a simple "vpn.companyname.com" address and then setup the users in the PPTP area of the webGUI.

I've followed many "how-tos" online with no luck - I keep getting errors like "Error 800" and "Error 807" when trying to connect.

So my first question is....

How do I find out the IP that would be the incoming IP for VPN PPTP users? (ie: xxx.xxx.xxx.xxx)

How do I map that IP to vpn.companyname.com?
0
Comment
Question by:ProdigyOne2k
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 34968644
Normally the incoming ip would be the public address of the firewall.

The mapping is done through your DNS provider. Or if you have access to a 'control panel' for your domain, just create an A record pointing vpn.companyname.com to the formentioned public ip address.
0
 

Author Comment

by:ProdigyOne2k
ID: 34970329
You mention "Normally the incoming ip would be the public address of the firewall."

How do I find out what the public address of the firewall is?  Would it be the same as the "whatismyip.com" address for every computer in the office?

We use everydns.net as our DNS provider - and I do see something setup there with "vpn.companyname.com" - but the IP does *not* match our "whatismyip.com" address on our PCs.  When i got to different PCs throughout the office they ALL give the same "whatismyip.com" address so I'm *assuming* that is the IP of the firewall as well - bad assumption?
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 34970442
Well, I am assuming the same ;)
The firewall is the gateway to the internet for your network (I assume). So it should have at least two interfaces: one to the inside and one to the outside. When you issue a ifconfig on it you should be able to see the interface setup with the ip addresses.
0
 

Author Comment

by:ProdigyOne2k
ID: 34974951
Since the IP coming back when I ping "vpn.companyname.com" wasn't matching the IP I get internally - I edited that field on the DNS settings to point to our "whatismyip.com" IP that was coming up.  Now DNS takes a bit to refresh correct? (like 24 hours?!?)  - when I ping "vpn.companyname.com" the old IP is still showing up - not the new one - figure I just wait it out...
0
 
LVL 35

Accepted Solution

by:
Ernie Beek earned 500 total points
ID: 34975204
You're right. As a rule of thumb, take appox. 24 hours for the DNS updates to spread. So just wait. Tomorrow this time it should be ok. If not, we'll have to investigate your public ip(s) a bit more.
0

Featured Post

Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Some of you may have heard that SonicWALL has finally released an app for iOS devices giving us long awaited connectivity for our iPhone's, iPod's, and iPad's. This guide is just a quick rundown on how to get up and running quickly using the app. …
Managing 24/7 IT Operations is a hands-on job and indeed a difficult one. Over the years I have found some simple tips and techniques to increase the efficiency of the overall operations. The core concept has always been on continuous improvement; a…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question