VPN and portforwarding [Archive] - AsusForum.NET -- WL500g

Bekijk de volledige versie : VPN and portforwarding

wabby

23-09-2007, 18:07

Hi!

I'm trying to make an VPN connection to my server when i'm at work. But the connection drops / freezes at "verifying username and password".

This on only when i'm trying to connect from the outside.
When I'm on my local network the VPN connects perfectly.

This is how it's set up.

WAN - 1Asus Ruter (NAT) - Bridge - 1Asus Ruter(works as switch, no NAT, no DHCP) - Server

on 1Asus I have forwareded these ports:
1723 UDP
1723 TCP
47 UDP
47 TCP

I have also tried to put the server in the Virtual DMZ, but no luck :(

Have I missed a port or what could be the problem?

Thanks!

MMCM

24-09-2007, 08:34

47 is a protocol number (=GRE protocol), not a port number of the TCP protocol.

To get a stable VPN connection, don't mess around with PPTP, but install openvpn. The openvpn protocol can be NATted, and port forwareded without any problems (no special kernel modules required). You can install it on your router, too.

wabby

24-09-2007, 15:55

even on a WL-520GC?
Or should i up it directly on the 2k3 server.

read som about it, and i cant see the point of installing is on the server since its the ruter that blocks the GRE.
And doesnt seem like that 520 can use OpenVPN.
Looks like i have to switch place with the wl-500g since it is already running oleg.

MMCM

24-09-2007, 22:13

I think a WL-500gc with only 2MB Flash and no USB will not be able to run custom firmware with usable features. The WL-500g with it's USB port should be able to.
The optware feed for olegs FW includes openvpn 2.0.7, which is not very up to date...
I'm using OpenWrt kamikaze on two wl-500gd devices (and some netgear WGT634U and foneras), and there's openvpn 2.0.9 available, which is the latest stable version.

Before I switched to openvpn, I had pptp servers running on the routers, but pptp vpn over a pptp adsl connection did't run stable.

No problem with openvpn since.

If you still want to work with pptp, you can forward TCP Port 1723 and the GRE *PROTOCOL* to your 2003 Server, if the (maybe limited) gui of the WL-520gc does support it. I can't remember any more if the ASUS/Oleg FW did allow that.

wabby

25-09-2007, 21:57

Thanks, I will try to use the 500g instead if the 520gc.

At the moment i solved the problem using hamachi:)