CAN'T CONNECT TO VPN SERVER THAT BEHIND A ROUTER AND A SWITCH...

[johnnylam]

i run a win2000 server with 10 client pc. i have 4 static dsl. i know i only need one for my Vpn. i want to setup a vpn server and have a share of internet, so all my client's pc can get on line at the same time.
On my server 2k, i have 2 nic. I run a dsl line into a WAN port of a 4 Port Linksys router, and Por 4 of router is connected to 1st NIC (which i entered the ip address from my ISP). 2nd NIC on my server (obtain ip automatically) is connect to port 1 of a 16 ports Linksys switch (hub). Port 3
of the router is connected to 16th port of Linksys switch. I have configured my RRAS and forwarded port 1723. I can have all the clients pc get online. But when i dial in from a remote pvn client, i can't not connect to the server. it gave me some kind of error connecting message. I check all the pc's IP by using the ipconfig command, i can see The DHCP assigned ip for all the pc including the server.I believed my vpn client can't connect because the server is now behind the fire wall or being assigned w/ d different ip address from the DHCP. How can I get around this problem. PLEASE HELP.

 

[John Lewis]

You haven't really given enough information to work with here, but start with forwarding protocol 47.

If you have future problems, note that 'some kind of error connecting message' doesn't really mean much. Try to be more specific.

 

[johnnylam]

i have updated my linksys firmware, forwarded port 47 and 1723. I also checked to make sure the Ipsec pass throught is enable. but it still give me error message "error 678, the remote computer did not response". please help.

i got 4 ip come out of the modem. do you recommend any other brand of router that handle more than 4 ipsec pass thruogh at the same time. Thanks for reponse to my post.

 

[John Lewis]

Well, we weren't looking for port 47. What we need is protocol 47. Looking around the Linksys site, it looks like they might be passing that through by default. Either way, you need to turn forwarding for port 47 off, as it may need to go through nat for another connection.

I wasn't expecting a 678 error . . doesn't look right. You mentioned 4 static ip's. Do you mean that you have 4 ip addresses that were assinged by your ISP, or do you mean that you assigned static ip's from the router? Either way, you should have one ip that was assigned by your ISP assigned to the router. If you do have 4, the other 3 are pretty much useless to you. When you make your VPN connection, you need to connect to the address of the router (the one assigned by your ISP). The forwarding on the router should forward the connection to the address you specified (which should be the ip of your VPN server).

So far as different routers go, Linksys should be fine. They have a couple models that have built in VPN servers. If you are thinking about a change, I would try one of those (such as their BEFVP41).

Post back, and be patient.