| Author |
Message |
Guest
|
 Posted:
Wed Oct 27, 2004 7:40 am Post subject:
BEFSR41 Linksys Router & VPN Setup |
|
|
I've tried in the past but never really had solid results for vpn
setup. I have a BEFSR41 linksys router. Would like to understand the
vpn setup process for windows 2000/xp pro configuration.
Been reading alot on the net, obtaining bits and pieces here and there
but nothing real solid.
Please help.
Tvos@ureach.com |
|
| Back to top |
|
 |
Leythos
Guest
|
| Posted:
Wed Oct 27, 2004 2:30 pm Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
In article <1098848431.348222.322700@f14g2000cwb.googlegroups.com>,
tvos@ureach.com says...
| Quote: | I've tried in the past but never really had solid results for vpn
setup. I have a BEFSR41 linksys router. Would like to understand the
vpn setup process for windows 2000/xp pro configuration.
Been reading alot on the net, obtaining bits and pieces here and there
but nothing real solid.
|
I just setup another Windows 2003 server and tried to get the Linksys
units (three of them) to pass PPTP/GRE inbound to the server so that I
could RAS into it and never got it to work. In fact, I spent 2 hours
with the MS Networking Support Team the other night, just to find that
the Linksys units don't pass GRE outbound.
While searching on the Linksys site again, not that CISCO has take over
and change the firmware, I found an interesting article that states you
have to forward PORT 1723 BOTH to the server AND PORT 47 BOTH to the
server. GRE is not a port, it doesn't use PORT 47, but it appears that
Linksys has changed the PPTP sessions to require GRE to use PORT 47 in
their latest firmware.
I didn't confirm the above, I bought a D-Link DI-808HV unit and it
worked fine, heck, it can even act as a PPTP end-point if you want it
too.
--
--
spamfree999@rrohio.com
(Remove 999 to reply to me) |
|
| Back to top |
|
|
CharlesH
Guest
|
| Posted:
Wed Oct 27, 2004 9:49 pm Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
In article <MPG.1be9449da8ee779c9898bf@news-server.columbus.rr.com>,
Leythos <void@nowhere.org> wrote:
| Quote: | I just setup another Windows 2003 server and tried to get the Linksys
units (three of them) to pass PPTP/GRE inbound to the server so that I
could RAS into it and never got it to work. In fact, I spent 2 hours
with the MS Networking Support Team the other night, just to find that
the Linksys units don't pass GRE outbound.
While searching on the Linksys site again, not that CISCO has take over
and change the firmware, I found an interesting article that states you
have to forward PORT 1723 BOTH to the server AND PORT 47 BOTH to the
server. GRE is not a port, it doesn't use PORT 47, but it appears that
Linksys has changed the PPTP sessions to require GRE to use PORT 47 in
their latest firmware.
|
Someone there is confused. GRE is IP *protocol* 47, and has nothing
to do with UDP or TCP, which are two other IP protocols, and
"ports" are associated with UDP and TCP. The BEFSR41 has special
PPTP passthrough support, but, as you say, that may be for inbound
only. You might want to take this to the Linksys forum on dslreports:
http://www.dslreports.com/forum/equip,16 |
|
| Back to top |
|
|
Leythos
Guest
|
| Posted:
Wed Oct 27, 2004 10:09 pm Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
In article <NcRfd.773$zx1.719@newssvr13.news.prodigy.com>,
hoch@exemplary.invalid says...
| Quote: | In article <MPG.1be9449da8ee779c9898bf@news-server.columbus.rr.com>,
Leythos <void@nowhere.org> wrote:
I just setup another Windows 2003 server and tried to get the Linksys
units (three of them) to pass PPTP/GRE inbound to the server so that I
could RAS into it and never got it to work. In fact, I spent 2 hours
with the MS Networking Support Team the other night, just to find that
the Linksys units don't pass GRE outbound.
While searching on the Linksys site again, not that CISCO has take over
and change the firmware, I found an interesting article that states you
have to forward PORT 1723 BOTH to the server AND PORT 47 BOTH to the
server. GRE is not a port, it doesn't use PORT 47, but it appears that
Linksys has changed the PPTP sessions to require GRE to use PORT 47 in
their latest firmware.
Someone there is confused. GRE is IP *protocol* 47, and has nothing
to do with UDP or TCP, which are two other IP protocols, and
"ports" are associated with UDP and TCP. The BEFSR41 has special
PPTP passthrough support, but, as you say, that may be for inbound
only. You might want to take this to the Linksys forum on dslreports:
http://www.dslreports.com/forum/equip,16
|
I know that GRE is Protocol, but port 47, but the updated documents on
Linksys's site indicate that to get it working you need to forward
TCP/UDP 47 inbound to the VPN server hosted in your network.
--
--
spamfree999@rrohio.com
(Remove 999 to reply to me) |
|
| Back to top |
|
|
Dr. Cajones
Guest
|
| Posted:
Thu Oct 28, 2004 5:35 pm Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
Not too long ago I was considering a BEFSR41, and inquired of a friend who
has been working in the "small" network realm for many years. I present an
excerpt from one of his emails to me on the general subject of home
networking, in which he refers to his own set up.
"I went with the Linksys BEFSX41 because in addition to the hardware
firewall feature, it
also supports VPN end-point which I need for work - the nearest
competitive unit Netgear offered would only support VPN pass-thru, not
enough for my needs. $60 retail, much less than the $360 I paid for the
Webramp unit back in early 2000.
Linksys BEFSX41 review here:
http://www.smallnetbuilder.com/Reviews-17-ProdID-BEFSX41.php "
maybe this will help?
dj |
|
| Back to top |
|
|
mcp6453
Guest
|
| Posted:
Fri Oct 29, 2004 1:34 am Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
Leythos wrote:
| Quote: |
I didn't confirm the above, I bought a D-Link DI-808HV unit and it
worked fine, heck, it can even act as a PPTP end-point if you want it
too.
|
When a router is used as a PPTP end-point in a peer-to-peer network, can
the remote computer access a host computer within the network? Once the
remote computer validates and connects to the router, how does that
computer access another computer behind the router, if it can? |
|
| Back to top |
|
|
Leythos
Guest
|
| Posted:
Fri Oct 29, 2004 1:44 am Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
In article <6o2dnawdCZdN-BzcRVn-sA@portbridge.com>, mcp6453
@earthlink.net says...
| Quote: | Leythos wrote:
I didn't confirm the above, I bought a D-Link DI-808HV unit and it
worked fine, heck, it can even act as a PPTP end-point if you want it
too.
When a router is used as a PPTP end-point in a peer-to-peer network, can
the remote computer access a host computer within the network? Once the
remote computer validates and connects to the router, how does that
computer access another computer behind the router, if it can?
|
You are assigned an IP in the subnet of the LAN side of the router - you
access anything you want in the LAN side subnet by IP.
--
--
spamfree999@rrohio.com
(Remove 999 to reply to me) |
|
| Back to top |
|
|
Kaptain Krunch
Guest
|
| Posted:
Fri Oct 29, 2004 1:49 am Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
OK, I have been setting up VPN here also... Today I succeded some what.
Connection is between 2 BEFSX41 routers.
Net A (My net) running windows 2k pro
Net B (His Net) running win XP
I get all my computers in his Network Places
but
I dont...
Now for MCP6453 the routers all handle the security and tunneling when you
get a connection go to network properties and set up a conection for outside
computers share the files you want and operate the system as if you added a
new computer on you internal net.
I did find one Item that might be helpful... each router that does this end
point MUST be on a different subnet..
IE: router A must have an address of say 192.168.1.1
and router B must have the address of 192.168.2.1
KK
"mcp6453" <mcp6453@earthlink.net> wrote in message
news:6o2dnawdCZdN-BzcRVn-sA@portbridge.com...
| Quote: | Leythos wrote:
I didn't confirm the above, I bought a D-Link DI-808HV unit and it
worked fine, heck, it can even act as a PPTP end-point if you want it
too.
When a router is used as a PPTP end-point in a peer-to-peer network, can
the remote computer access a host computer within the network? Once the
remote computer validates and connects to the router, how does that
computer access another computer behind the router, if it can? |
|
|
| Back to top |
|
|
Bill M.
Guest
|
| Posted:
Fri Oct 29, 2004 4:39 am Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
On Thu, 28 Oct 2004 17:49:06 -0400, "Kaptain Krunch"
<captainkrunch@comcast.net> wrote:
| Quote: | OK, I have been setting up VPN here also... Today I succeded some what.
Connection is between 2 BEFSX41 routers.
Net A (My net) running windows 2k pro
Net B (His Net) running win XP
I get all my computers in his Network Places
but
I dont...
Now for MCP6453 the routers all handle the security and tunneling when you
get a connection go to network properties and set up a conection for outside
computers share the files you want and operate the system as if you added a
new computer on you internal net.
I did find one Item that might be helpful... each router that does this end
point MUST be on a different subnet..
IE: router A must have an address of say 192.168.1.1
and router B must have the address of 192.168.2.1
KK
|
Those two addresses aren't necessarily on different subnets. It
depends on the netmask being used.
--
Bill |
|
| Back to top |
|
|
mcp6453
Guest
|
| Posted:
Fri Oct 29, 2004 4:53 am Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
Leythos wrote:
| Quote: |
In article <6o2dnawdCZdN-BzcRVn-sA@portbridge.com>, mcp6453
@earthlink.net says...
Leythos wrote:
I didn't confirm the above, I bought a D-Link DI-808HV unit and it
worked fine, heck, it can even act as a PPTP end-point if you want it
too.
When a router is used as a PPTP end-point in a peer-to-peer network, can
the remote computer access a host computer within the network? Once the
remote computer validates and connects to the router, how does that
computer access another computer behind the router, if it can?
You are assigned an IP in the subnet of the LAN side of the router - you
access anything you want in the LAN side subnet by IP.
|
I see. That makes a lot of sense. Can I use an XP machine to VPN into
the router, or must I have two routers? |
|
| Back to top |
|
|
Leythos
Guest
|
| Posted:
Fri Oct 29, 2004 2:35 pm Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
In article <418194E1.63A8@earthlink.net>, mcp6453@earthlink.net says...
| Quote: | Leythos wrote:
In article <6o2dnawdCZdN-BzcRVn-sA@portbridge.com>, mcp6453
@earthlink.net says...
Leythos wrote:
I didn't confirm the above, I bought a D-Link DI-808HV unit and it
worked fine, heck, it can even act as a PPTP end-point if you want it
too.
When a router is used as a PPTP end-point in a peer-to-peer network, can
the remote computer access a host computer within the network? Once the
remote computer validates and connects to the router, how does that
computer access another computer behind the router, if it can?
You are assigned an IP in the subnet of the LAN side of the router - you
access anything you want in the LAN side subnet by IP.
I see. That makes a lot of sense. Can I use an XP machine to VPN into
the router, or must I have two routers?
|
The DI-804HV and DI-808HV can act as PPTP end-points, the Linksys units
do not act as PPTP end-points.
--
--
spamfree999@rrohio.com
(Remove 999 to reply to me) |
|
| Back to top |
|
|
mcp6453
Guest
|
| Posted:
Fri Oct 29, 2004 4:20 pm Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
Leythos wrote:
| Quote: |
I see. That makes a lot of sense. Can I use an XP machine to VPN into
the router, or must I have two routers?
The DI-804HV and DI-808HV can act as PPTP end-points, the Linksys units
do not act as PPTP end-points.
|
Does that mean that an XP machine can initiate the tunnel, or do I have
to have TWO routers providing an endpoint at each end? |
|
| Back to top |
|
|
Leythos
Guest
|
| Posted:
Fri Oct 29, 2004 9:14 pm Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
In article <418235EF.CDD@earthlink.net>, mcp6453@earthlink.net says...
| Quote: | Leythos wrote:
I see. That makes a lot of sense. Can I use an XP machine to VPN into
the router, or must I have two routers?
The DI-804HV and DI-808HV can act as PPTP end-points, the Linksys units
do not act as PPTP end-points.
Does that mean that an XP machine can initiate the tunnel, or do I have
to have TWO routers providing an endpoint at each end?
|
It means that you can connect to the router using Windows PPTP VPN.
If you were going to connect two VPN routers to each other, you would be
better off using IPSec tunnels configured in each router.
--
--
spamfree999@rrohio.com
(Remove 999 to reply to me) |
|
| Back to top |
|
|
Kaptain Krunch
Guest
|
| Posted:
Sat Oct 30, 2004 1:28 am Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
255.255.255.0 that is just what the docs say "subnet", guess it would be
more correct to say different addys, however, why wouldnt it work the same
if they just had 2 different IP's?
KK
"Bill M." <wbillups@hotmail.com> wrote in message
news:f943o01mihhv7cdra2bso30uajb6no03mu@4ax.com...
| Quote: | On Thu, 28 Oct 2004 17:49:06 -0400, "Kaptain Krunch"
captainkrunch@comcast.net> wrote:
OK, I have been setting up VPN here also... Today I succeded some what.
Connection is between 2 BEFSX41 routers.
Net A (My net) running windows 2k pro
Net B (His Net) running win XP
I get all my computers in his Network Places
but
I dont...
Now for MCP6453 the routers all handle the security and tunneling when
you
get a connection go to network properties and set up a conection for
outside
computers share the files you want and operate the system as if you added
a
new computer on you internal net.
I did find one Item that might be helpful... each router that does this
end
point MUST be on a different subnet..
IE: router A must have an address of say 192.168.1.1
and router B must have the address of 192.168.2.1
KK
Those two addresses aren't necessarily on different subnets. It
depends on the netmask being used.
--
Bill |
|
|
| Back to top |
|
|
Kaptain Krunch
Guest
|
| Posted:
Sat Oct 30, 2004 1:31 am Post subject:
Re: BEFSR41 Linksys Router & VPN Setup |
|
|
You can use any 2000/xp machine to set up vpn, but there may be a problem
with the router passing GRE. there is a doc on the M$ knowledge base...
http://support.microsoft.com/kb/q252735/
KK
"mcp6453" <mcp6453@earthlink.net> wrote in message
news:418194E1.63A8@earthlink.net...
| Quote: | Leythos wrote:
In article <6o2dnawdCZdN-BzcRVn-sA@portbridge.com>, mcp6453
@earthlink.net says...
Leythos wrote:
I didn't confirm the above, I bought a D-Link DI-808HV unit and it
worked fine, heck, it can even act as a PPTP end-point if you want
it
too.
When a router is used as a PPTP end-point in a peer-to-peer network,
can
the remote computer access a host computer within the network? Once
the
remote computer validates and connects to the router, how does that
computer access another computer behind the router, if it can?
You are assigned an IP in the subnet of the LAN side of the router - you
access anything you want in the LAN side subnet by IP.
I see. That makes a lot of sense. Can I use an XP machine to VPN into
the router, or must I have two routers? |
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in