Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Setting up VPN with pfSense

Posted on 2011-02-23
5
Medium Priority
?
1,511 Views
Last Modified: 2012-05-11
I am trying to setup a VPN at my workplace with pfSense.

We want to use a simple "vpn.companyname.com" address and then setup the users in the PPTP area of the webGUI.

I've followed many "how-tos" online with no luck - I keep getting errors like "Error 800" and "Error 807" when trying to connect.

So my first question is....

How do I find out the IP that would be the incoming IP for VPN PPTP users? (ie: xxx.xxx.xxx.xxx)

How do I map that IP to vpn.companyname.com?
0
Comment
Question by:ProdigyOne2k
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 34968644
Normally the incoming ip would be the public address of the firewall.

The mapping is done through your DNS provider. Or if you have access to a 'control panel' for your domain, just create an A record pointing vpn.companyname.com to the formentioned public ip address.
0
 

Author Comment

by:ProdigyOne2k
ID: 34970329
You mention "Normally the incoming ip would be the public address of the firewall."

How do I find out what the public address of the firewall is?  Would it be the same as the "whatismyip.com" address for every computer in the office?

We use everydns.net as our DNS provider - and I do see something setup there with "vpn.companyname.com" - but the IP does *not* match our "whatismyip.com" address on our PCs.  When i got to different PCs throughout the office they ALL give the same "whatismyip.com" address so I'm *assuming* that is the IP of the firewall as well - bad assumption?
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 34970442
Well, I am assuming the same ;)
The firewall is the gateway to the internet for your network (I assume). So it should have at least two interfaces: one to the inside and one to the outside. When you issue a ifconfig on it you should be able to see the interface setup with the ip addresses.
0
 

Author Comment

by:ProdigyOne2k
ID: 34974951
Since the IP coming back when I ping "vpn.companyname.com" wasn't matching the IP I get internally - I edited that field on the DNS settings to point to our "whatismyip.com" IP that was coming up.  Now DNS takes a bit to refresh correct? (like 24 hours?!?)  - when I ping "vpn.companyname.com" the old IP is still showing up - not the new one - figure I just wait it out...
0
 
LVL 35

Accepted Solution

by:
Ernie Beek earned 2000 total points
ID: 34975204
You're right. As a rule of thumb, take appox. 24 hours for the DNS updates to spread. So just wait. Tomorrow this time it should be ok. If not, we'll have to investigate your public ip(s) a bit more.
0

Featured Post

Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question