Need advice on VPN hardware

October 3, 2011 at 10:03:14
Specs: Windows 7
Hello,
I am trying to set up VPN access to our windows server. This is for a small business (12 of us) where it is unlikely more than 2-3 will require simultaneous access. I have tried without success using a Linksys RV042 VPN router and a BT2700HGV ADSL modem/router. What hardware *should* I be using. (Skill level - networking newbie.) Many thanks in advance.

See More: Need advice on VPN hardware

Report •


#1
October 3, 2011 at 12:02:37
The hardware is okay. You have to configure the router to allow the traffic to pass through it. The information in on the internet if it wasn't given to you when you purchased the router.

How do you know when a politician is lying? His mouth is moving.


Report •

#2
October 3, 2011 at 12:22:40
You post the same issue over at Tech Support forum?

You don't mention loading/using the cisco vpn client software

Answers are only as good as the information you provide.
How to properly post a question:
Sorry no tech support via PM's


Report •

#3
October 4, 2011 at 00:49:27
Hi Guapo

I have tried setting up the ADSL router both with a pinhole for the port used by the Cisco VPN client software (QuickVPN) and with all ports open to all applications. Neither configuration worked.

The odd thing was that with all ports open, the DHCP address given by the BT ADSL router to the Linksys VPN router was the same as the external (internet side) address of the ADSL router. (Example: with all other addresses on the network being in the range 192.168.1.X,the address of the VPN router was 109.158.160.42 - exactly the same as the ADSL router on the internet side.)


Report •

Related Solutions

#4
October 4, 2011 at 01:03:54
Hi Wanderer

I haven't posted on the Tech Support Forum (new to this one). Where would I find that, please?

I am using the Cisco QuickVPN client software. This fails at every connection attempt. I have created a certificate and exported it for the client machine as per the QuickVPN instructions.

When configuring the Linksys VPN router, I have tried with a host (dyndns.com) and using a fixed internet side IP address (it isn't fixed but it doesn't change so often that I can't TRY it as a configuration). When I click the <Connect> button in the "Tunnel Test" column I get waiting.. followed by the return of the <Connect> button (i.e. it hasn't worked).


Report •

#5
October 4, 2011 at 01:06:46
i used pure vpn for setup a vpn this is awesome :)

Report •

#6
October 4, 2011 at 07:20:14
The only thing I can tell you is that you have to go through the documentation until you find the correct procedure.

Both the server & the clients have to be configured correctly.


How do you know when a politician is lying? His mouth is moving.


Report •

#7
October 4, 2011 at 07:33:26
Hi Guapo

I have spent the best part of two weeks going through the documentation for both routers with a fine-toothed comb. I can't think of any configuration I haven't tried and none of them seem to work. Colleagues who know a little more than I do have made suggestions and they don't work either.

I had come to the conclusion that these two pieces of kit are not compatible for some reason - hence the request for advice on alternative hardware. All suggestions are welcome but as far as documentation is concerned, I *have* read the book, cover-to-cover and several times.


Report •

#8
October 4, 2011 at 07:59:57
simplify

use only a modem
wan ip on the linksys not on the modem/router
get working without dyndns [you make no mention of the client running on a pc]

otherwise you have to put the modem/router in bridge mode so the vpn router gets the wan ip.

its the double router killing you out of the gate.

Answers are only as good as the information you provide.
How to properly post a question:
Sorry no tech support via PM's


Report •

#9
October 4, 2011 at 08:23:17
Hi Wanderer

Our current setup has only one ADSL line going to the BT router. This provides several office facilities:
* Internet access.
* Wireless access to both the windows server and internet.
* A DHCP server for the office network.
This means I can't just disconnect the existing router in normal office hours. We are getting a second ADSL line soon, so I can use that without disrupting other people's work.

You mention "bridge mode". Could that be what is happening when I open all ports to all applications (for the VPN router's MAC address) and then the VPN router appears to have the WAN address?

I don't have a plain vanilla ADSL modem to hand - is there one you would recommend?

The client I have is Cisco's QuickVPN. I have tried this on both a Windows7 PC and an XP installation with service pack 3. Both fail to connect.


Report •

#10
October 4, 2011 at 11:57:20
fail to connect because of the dual router setup.
not sure why you would get a second dsl line instead of increasing the bandwidth of the one you have. 2nd line complicates things even more then they are now.

opening ports does nothing concerning ip addressing so your statement

"Could that be what is happening when I open all ports to all applications (for the VPN router's MAC address) and then the VPN router appears to have the WAN address?"
makes no sense to me.

How are you determining the ip of the wan port for the BT as well as the Linksys?

This may well be worth reviewing
http://business.forums.bt.com/t5/Br...

Answers are only as good as the information you provide.
How to properly post a question:
Sorry no tech support via PM's


Report •

#11
October 4, 2011 at 14:57:27
Hi Wanderer

<fail to connect because of the dual router setup.
not sure why you would get a second dsl line instead of increasing the bandwidth of the one you have. 2nd line complicates things even more then they are now.>
Second DSL line will enable me to set up a test server and totally independent network to test VPN facility. Without this facility, I will interrupt office services which are relied on - unless I want to work through the night and weekends (and frankly, I don't).

<opening ports does nothing concerning ip addressing so your statement

"Could that be what is happening when I open all ports to all applications (for the VPN router's MAC address) and then the VPN router appears to have the WAN address?"
makes no sense to me.>
It makes no sense to me, either - but that's what the ADSL router does!

<How are you determining the ip of the wan port for the BT as well as the Linksys?> both the WAN address reported at the BT Router AND www.whatsmyip.org (these report the same address).

Thanks for the link re the BT Router. Your input is greatly appreciated.


Report •

#12
October 4, 2011 at 15:08:07
whatsmyip will only report the public ip which is on the first routers wan port. It doesn't report what is on the 2nd routers wan port.

Answers are only as good as the information you provide.
How to properly post a question:
Sorry no tech support via PM's


Report •

#13
October 5, 2011 at 02:07:40
Hi Wanderer

<whatsmyip will only report the public ip which is on the first routers wan port. It doesn't report what is on the 2nd routers wan port.>

With the first router set as a firewall (full security or selected ports open) it functions as a DHCP server and allocates an IP address in the range 192.168.1.X. This is shown in the first router's IP table. This is also reported as the IP address of the WAN port on the second router.

With the first router set with all ports open to the second router, it allocates its own public IP address to the second router (behaviour which has me baffled). This is reported in the first router's IP table and as the IP address or the WAN port on the second router.

I am not an IT professional but have spent the past 25 years configuring, integrating and supporting a wide variety of industrial control equipment. On a few occasions, I have wasted huge amounts of time trying to do something for the first time with equipment I have never used before which stubbornly refused to work, only to find out in the bitter end that the (brand new straight out of the box) equipment was faulty. My current VPN scenario definitely has that feel about it. I am certain all the advice I'm being given (your good self included) is correct.

Please would you recommend an ADSL modem and a VPN router (or an all-in-one unit) so that I can start again from scratch? Everywhere I look, I am getting the same advice on how to get our existing kit working - but it doesn't work. A new bit of kit is a tiny fraction of the cost of the hours already spent to no avail. I need to get something working and it doesn't have to be the stuff I already have on the shelf. Many thanks in advance for your advice.


Report •


Ask Question