vpn issue ?

knowlesy · 15 Apr 2009 at 14:59

Right Im trying to set up the ability to be able to vpn into my home network
I have a linksys wrt54g with tomato currently installed onto it (yes i know it doesn't have direct support for vpning but i really cant see it being a major issue )

I have forwarded the ports (below) I found them somewhere on tinternet apparently they are default vpn ports ?

TCP 1701
TCP 1723
UDP 500

all of these ports are forwarded to my server ip, and vpn has been set up on the server (server 2003) and allowed on its firewall so any ideas? to why its not working ? I can remote onto it but not vpn

knowlesy · 15 Apr 2009 at 23:47

bump*

slylittlefox · 16 Apr 2009 at 02:19

Hmm.. it's more likely to be the configuration of your Windows server rather than a mistake on the firewalls end. How sure are you that the Windows box is configured properly?

Have you considered Linux and installing OpenVPN? Some of the 'firewall centric' distro's support OpenVPN out of the box and make it relatively easy to set up. Any problems, hop over to the Linux forum.

Rabtech · 16 Apr 2009 at 08:41

You tried using hamachi? No port forwarding required

Paul11 · 16 Apr 2009 at 08:42

teamviewer does it , all in one package..

knowlesy · 16 Apr 2009 at 09:19

slylittlefox said:
Hmm.. it's more likely to be the configuration of your Windows server rather than a mistake on the firewalls end. How sure are you that the Windows box is configured properly?

Have you considered Linux and installing OpenVPN? Some of the 'firewall centric' distro's support OpenVPN out of the box and make it relatively easy to set up. Any problems, hop over to the Linux forum.

nothing more would please me to move to linux, however until there isnt a decent streaming program for upnp for the ps3 360 etc Ill be sticking with server 2003 sadly

Rabtech said:
You tried using hamachi? No port forwarding required

read about that in life hacker but for a different use, might as well give it a go

Paul11 said:
teamviewer does it , all in one package..

hmmm ill have a look at the hamchi and this website to compare, thanks guys

Daff_Duck · 16 Apr 2009 at 09:28

Paul11 said:
teamviewer does it , all in one package..

Great programe bud thanks for the heads up does exactly what I need it to do

Thanks

knowlesy · 16 Apr 2009 at 09:33

it looks more like a remote viewer rarther than a vpn, hamchi just tried, its excellent just one problem it crashes another none named program I use, which Is vital

atomiser · 16 Apr 2009 at 12:24

your using 2003 routing and remote access to provide a pptp vpn? double check your router is also forwarding gre to your internal server in addition to pptp. gre is ip protocol 47. (don't get this confused with tcp or udp ports). some routers do this by default when you forward pptp, other's dont...so it's worth verifying how your particular router handles it.

edit: also, you shouldnt need 1701 or 500 if you are using pptp, as those are used for l2tp/ipsec i think. either way, you really only ought to forward the ports you are actually using, rather a load of 'defaults'.

knowlesy · 16 Apr 2009 at 12:25

atomiser said:
your using 2003 routing and remote access to provide a pptp vpn? double check your router is also forwarding gre to your internet server in addition to pptp. gre is ip protocol 47. (don't get this confused with tcp or udp ports). some routers do this by default when you forward pptp, other's dont...so it's worth verifying how your particular router handles it.

yeah thats what the guide were saying, I have not got a clue what you just said

Paul11 · 16 Apr 2009 at 12:30

knowlesy said:
it looks more like a remote viewer rarther than a vpn, hamchi just tried, its excellent just one problem it crashes another none named program I use, which Is vital

teamviewer has option for VPN

atomiser · 16 Apr 2009 at 12:35

i've no experience using tomato firmware so you may need to use some googling skills - but to successfully establish a pptp connection you need tcp 1723 (pptp - point to point tunneling protocol) and ip protocol 47 (gre - generic routing encapuslation) to be forwarded from your public ip address to the internal ip address of your 2003 server running routing and remote access. tomato will either automatically forward gre for you when you forward pptp (although it sounds like that isn't happening!), or it will require you to manually forward it (which may require the creation of a custom 'service' for gre on ip protocol 47), or it may make it a bit friendlier and just have a 'tick box' to 'enable pptp passthrough' which may well take care of the gre forwarding for you. the final option is (although this is pretty unlikely!) that pptp passthrough is not supported. if your not sure about ip protocol 47, then google is your friend!

knowlesy · 16 Apr 2009 at 13:00

atomiser said:
i've no experience using tomato firmware so you may need to use some googling skills - but to successfully establish a pptp connection you need tcp 1723 (pptp - point to point tunneling protocol) and ip protocol 47 (gre - generic routing encapuslation) to be forwarded from your public ip address to the internal ip address of your 2003 server running routing and remote access. tomato will either automatically forward gre for you when you forward pptp (although it sounds like that isn't happening!), or it will require you to manually forward it (which may require the creation of a custom 'service' for gre on ip protocol 47), or it may make it a bit friendlier and just have a 'tick box' to 'enable pptp passthrough' which may well take care of the gre forwarding for you. the final option is (although this is pretty unlikely!) that pptp passthrough is not supported. if your not sure about ip protocol 47, then google is your friend!

ah thanks for the explanation

ill give it a whirl !

PESolution · 17 Apr 2009 at 22:10

teamviewer