Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SOHO 6 and VPN

Status
Not open for further replies.
bpnaoe

bpnaoe

Programmer
Oct 22, 2008
4
US
Hi,

I'm trying to set up a VPN connection for some of our employees to use when they are at home. And we have another branch office that will be opening soon. They don't have a external firewall yet on that location and same with the employees that will access it.

I have created a VPN connection on our windows server 2003 and allowed access to some domain users. And so I would just have to create VPN clients to connect to the VPN server. Infront of our server is a Watchguard Soho 6. I know i need to configure something in soho 6 and open ports to allow VPN traffic. I just don't know how to do it. We,ve been using soho 6 since 2004 and everythings going well since then.
Thank you in advance for your help.

public ip: 216.xxx.xxx.xxx
internal ip: 192.168.2.3


 
Sort by date Sort by votes
Sorry I forgot to include. I tried opening the port 1723 using the customized service and here is how i configure it.

1. opened the TCP port 1723 I added it.
2. incoming filter is allow
3. service host is the internal ip 192.168.2.3
4. outgoing filter is allow
5. set 'From' outgoing filter to allow 'ANY'
6. set 'To' outgoing filter to 216.xxx.xxx.xx and 192.168.2.3
7. I also configured the preset PPTP settings on the soho 6 to Allow and service host is 192.168.2.3
 
Upvote 0 Downvote
This is how my former lead tech set up a vpn at one of our clients.
He configured a PPTP packet filter which by defualt opens ports 1723 & 47. 1723 is tcp and 47 is IP, both client. Incoming is ANY and ANY. Outgoing is Any and Any.

He also made to new packet filters one that opened port 5900 both tcp and udp, both ignore. Incoming is From Any and to is NAT external to server ip

The other one opened port 6253,tcp, ignore. Incoming is From Any...To NAT External Ip -->server IP:5900. Outgoing is ANY to ANY

Hope this helps is some small way. I was not there when he set this up and it was only set up to allow a vendor for the client in. This VPN is now disabled. I do not know if everything he did was needed as I am not the guru that he was.
 
Upvote 0 Downvote
Sorry I should have told you that this particular firebox is an X700. I am not sure on the differences between the two are as far as interfacing with the box. The x700 has WSM and fireware on it.
 
Upvote 0 Downvote
Tnx. Amboyduke. I was able to resolve it by opening port 1723 server side using windows 2003 server configuration security wizard. Then it went through. I kept the predefined PPTP filter to allowed and removed the customized PPTP filter and it worked fine.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
266
Sameer258
Sameer258
intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
280
intel233
intel233
ISDPCMAN
  • Locked
  • Question
RDP fails over VPN
Replies
1
Views
121
gkittelson
gkittelson
Shmid
  • Locked
  • Question
Restricting Sonicwall SSL-VPN users for WAN access
Replies
7
Views
349
Shmid
Shmid
WhosYourDiffie
  • Locked
  • Question
Cisco ASA 5506 VPN for Avaya Phones
Replies
0
Views
86
WhosYourDiffie
WhosYourDiffie

Part and Inventory Search

Sponsor

Back
Top