Solved

Setting up VPN with pfSense

Posted on 2011-02-23
5
1,492 Views
Last Modified: 2012-05-11
I am trying to setup a VPN at my workplace with pfSense.

We want to use a simple "vpn.companyname.com" address and then setup the users in the PPTP area of the webGUI.

I've followed many "how-tos" online with no luck - I keep getting errors like "Error 800" and "Error 807" when trying to connect.

So my first question is....

How do I find out the IP that would be the incoming IP for VPN PPTP users? (ie: xxx.xxx.xxx.xxx)

How do I map that IP to vpn.companyname.com?
0
Comment
Question by:ProdigyOne2k
  • 3
  • 2
5 Comments
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 34968644
Normally the incoming ip would be the public address of the firewall.

The mapping is done through your DNS provider. Or if you have access to a 'control panel' for your domain, just create an A record pointing vpn.companyname.com to the formentioned public ip address.
0
 

Author Comment

by:ProdigyOne2k
ID: 34970329
You mention "Normally the incoming ip would be the public address of the firewall."

How do I find out what the public address of the firewall is?  Would it be the same as the "whatismyip.com" address for every computer in the office?

We use everydns.net as our DNS provider - and I do see something setup there with "vpn.companyname.com" - but the IP does *not* match our "whatismyip.com" address on our PCs.  When i got to different PCs throughout the office they ALL give the same "whatismyip.com" address so I'm *assuming* that is the IP of the firewall as well - bad assumption?
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 34970442
Well, I am assuming the same ;)
The firewall is the gateway to the internet for your network (I assume). So it should have at least two interfaces: one to the inside and one to the outside. When you issue a ifconfig on it you should be able to see the interface setup with the ip addresses.
0
 

Author Comment

by:ProdigyOne2k
ID: 34974951
Since the IP coming back when I ping "vpn.companyname.com" wasn't matching the IP I get internally - I edited that field on the DNS settings to point to our "whatismyip.com" IP that was coming up.  Now DNS takes a bit to refresh correct? (like 24 hours?!?)  - when I ping "vpn.companyname.com" the old IP is still showing up - not the new one - figure I just wait it out...
0
 
LVL 35

Accepted Solution

by:
Ernie Beek earned 500 total points
ID: 34975204
You're right. As a rule of thumb, take appox. 24 hours for the DNS updates to spread. So just wait. Tomorrow this time it should be ok. If not, we'll have to investigate your public ip(s) a bit more.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question