Solved

Wake on lan via site to site VPN which firewall in the middle

Posted on 2013-11-04
1
567 Views
Last Modified: 2014-02-23
I'm trying to do Wake on Lan over l2l VPN Tunnel. The topology is as follow

pc1 -> L3 Switch-> asa firewall --l2l vpn ---  asa firewall -- L3 Switch

asa is running 8.2 and the remote one is running 8.4  with routed mode

I have all the essential configuration for WoL already on L3 switch.

On the SVI, I have ip helper address and ip directed-broadcast ( for now i have an access-list that allows any to any during this testing period.)

(config)# ip forward-protocol udp

I'm pretty sure this has to do with something on the firewall not allowing broadcast address to forward via the l2l vpn tunnel. I also about ASA does not forward broadcast with routed mode and that I should have a proxy server to forward udp packet on the remote site to confirm that.

Do you guys know if WoL is available in this set up? if so, What need to be done?

Thanks
0
Comment
Question by:tmatty102
1 Comment
 
LVL 28

Accepted Solution

by:
Bill Bach earned 500 total points
Comment Utility
Try re-thinking the design -- do you have, or can you set up, a simple IIS web server inside the network that you can access from outside?

A very small VBScript call can do exactly what you need.  I already do it with code like this:
    MACAddress = _mac_address_to_wake_up_
    Set objShell=CreateObject("wscript.shell")
    strCommand="E:\WakeOnLan\mc-wol " & MACAddress & " /a 192.168.1.255"
    Set objExec=objShell.Exec(strCommand)
    Set objExec=Nothing
    Set objShell=Nothing

Open in new window


I then have a small front-end web page that allows me to pick a computer name and MAC address to wake up, which inserts that data into a database when I hit Submit.  Then, this process takes the MAC address out of the database and broadcasts the magic packet.
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now