Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

BEFSX41 to BEFSX41 VPN? 2

Status
Not open for further replies.
hudr

hudr

Vendor
May 21, 2004
44
US
can this be done? I have 2 Linksys BEFSX41 routers. One will be hooked to DSL w/ Static IP(Site A) and the other to cable with possible persistent IP(worst case:dynamic)(Site B). Can I set up a VPN between these two sites (A and B)using these routers? If so, how do I make it as stable as possible? I have had issues with Linksys routers dropping VPN connections in the past (look for that question in another post soon).
Thanks all,
Hudr
 
Sort by date Sort by votes
Issues with VPN over DSL normally relate to the MTU setting. DSL over PPPoE usually requires a smaller MTU setting for some connections and sites to work correctly. Next time you try, lower the MTU to something like 1400 as a test. You might also need to allow IPSec passthrough. Both settings can be found in the router configuration screen under Advanced -> Filters.

If dropped connections persist, even when the router is not involved, then I would suspect an ISP issue.


~cdogg
[tab]"All paid jobs absorb and degrade the mind";
[tab][tab]- Aristotle
[tab][navy]For general rules and guidelines to get better answers, click here:[/navy] faq219-2884
 
Upvote 0 Downvote
I agree with cdogg, but there is a way to affirmatively test your MTU.

. For DSL it is almost always 1492, unless you are using AOL which for odd reasons is 1412-1420. Rather than guess use a testing tool:


. You need to make entries for the MTU both in the router, and in each Windows client. I use the freeware DrTCP tool from the same site as the testing tools:
 
Upvote 0 Downvote
See also the firmware discussion for the BEFSX41 here: thread916-864467

You may have to on both sides fiddle with the firmware used.

A downgrade to the firmware is not out of the question as far as I am concerned, but see the discussion in the linked thread above.
 
Upvote 0 Downvote
I got the VPN working. I actually made it work with only one end having a static IP. I don't know how stable it will be and I am not at all satisfied with the security. How bad do you think it is to have the <Security-VPN-Remote Security Group> set to "Any"? I still have 3DES enabled with PFS and a pre-shared key. The VPN works but I think it could be more secure. Also, I found a link on Linksys's website that dealt directly with my question. (do a search on Linksys's site for Answer ID 247). But I think y'all have answered it more clearly. Also, first thing I did was upgrade both routers to the latest firmware available before even setting them up with the ISP.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

JennyJo25
  • Locked
  • Question
Linksys VPN Router connectivity to ISP modem/router issue
Replies
3
Views
213
Samthyr
Samthyr
cohoejoe
  • Locked
  • Question
Cannot reset BEFSX41 to factory setting
Replies
2
Views
90
SYQUEST
SYQUEST
tviman
  • Locked
  • Question
Do routers at each end of VPN tunnel need to be the same?
Replies
3
Views
145
tviman
tviman
ceil32
  • Locked
  • Question
Cant access a site through Linksys BEFSX41
Replies
5
Views
99
goombawaho
goombawaho
ttrsux
  • Locked
  • Question
WRV54G &amp; BEFSX41 vpn'd to RV016 how to fileshare between VPN endpoints
Replies
1
Views
69
travs69
travs69

Part and Inventory Search

Sponsor

Back
Top