LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 12-01-2003, 03:22 AM   #1
twantrd
Senior Member
 
Registered: Nov 2002
Location: CA
Distribution: redhat 7.3
Posts: 1,440

Rep: Reputation: 52
PPTPD with Linksys router


Hi everyone,

I have one of those popular Linksys BEFSR41 router w/4 port switch. The version number is 1.42.7. I am using Debian Woody and have installed/configured pptpd which is working fine if I VPN from my winxp machine to my VPN server machine via LAN. The debian woody box has no firewall and I have forwarded ports 1723 as well as 47 (eventhough 47 is a GRE protocol) to my debian box in the router's settings. I can VPN via Lan but I cannot VPN from outside world to my debian box. Does anyone have that problem? I have searched on google and some have success while others feel my pain. When I try to vpn from outside it will say "verifying username and password" and then it quits on me. Is the router not capable of VPN? Thanks...

-twantrd
 
Old 12-01-2003, 08:03 AM   #2
bigdogg
Member
 
Registered: Oct 2003
Distribution: Fedora Core 1
Posts: 80

Rep: Reputation: 15
All the router is doing is port forwarding to the internal host that you specifiy. Have you tried to telnet to that port?

telnet External IP 1723

Can you connect? You may have to upgrade the firmware of the router. But I would check to make sure you can telnet to the port 1st.

Thanks,
BiG
 
Old 12-01-2003, 09:49 PM   #3
twantrd
Senior Member
 
Registered: Nov 2002
Location: CA
Distribution: redhat 7.3
Posts: 1,440

Original Poster
Rep: Reputation: 52
Hi,

Yes, just tried and I can telnet to port 1723 using external IP.

-twantrd
 
Old 12-02-2003, 11:19 AM   #4
bigdogg
Member
 
Registered: Oct 2003
Distribution: Fedora Core 1
Posts: 80

Rep: Reputation: 15
All I can find is to open TCP port 1723 and IP protocol 47 Generic Routing Encapsulation (GRE)? Can you telnet too 47 also? The router is capable of VPN I have tested on Win2k boxes before. In the BEFSR41 router setup click on the Advanced tab. Under Filters make sure IPSec Pass Through is enabled and PPTP Pass Through is enabled.

Thanks,
BiG

I found these ports too:

UDP 500 500 Packets using this protocol and port are IPSec negotiation packets. Once an IPSec tunnel is negotiated, your firewall will need to pass Encapsulating Security Protocol (ESP) packets (protocol 50) and/or Authentication Header (AH) packets (protocol 51). You do not need to open this port if you are only using SST tunnels.

UDP 1701 1701 Packets using this protocol and port are using Layer 2 Tunneling Protocol (L2TP). If you are configuring your VPN Gateway to support native Windows* 2000 or Windows* XP client tunnels, then you must open this port on the firewall.

UDP 2233 2233 Packets using this protocol and port are encrypted data packets for SST tunnels. They should be allowed through the firewall but should be directed to the VPN Gateway and no other destination address.
Note: If the gateway is positioned behind an existing firewall product, a rule needs to be created.

UDP 10025 10025 Packets using this protocol and port are encrypted configuration files destined for the VPN Gateway Manager. Opening this port is only necessary if you use your VPN Manager outside the firewall.
UDP 10026 10026 Packets using this protocol and port are encrypted communication statistics packets destined for the VPN Gateway Manager. Opening this port is only necessary if you have your VPN Gateway Manager outside the firewall.

UDP 10027 10027 Packets using this protocol and port are encrypted packets containing commands to and from the Shiva® Certificate Authority or Intel® NetStructure™ Certificate Authority Pro.

TCP 10027 10027 Packets using this protocol and port are encrypted packets containing commands to and from the Shiva® Certificate Authority.

TCP 10028 10028 Packets using this protocol and port are encrypted broadcast packets from the Certificate Authority server and the Certificate Authority client.

I'm not really sure?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Need help with Linksys router. zozoman Linux - Wireless Networking 5 11-26-2005 07:56 AM
anyone with a linksys router? snutz411 Linux - Networking 6 01-23-2005 10:43 AM
Need Help W/ Linksys Router Please. cmd Linux - Hardware 1 02-22-2004 09:38 AM
router problem with linksys router scheiße_comp Linux - Networking 10 08-20-2002 10:18 AM
Linksys Router hubergeek Linux - Networking 4 08-14-2002 04:48 PM


All times are GMT -5. The time now is 08:02 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration