Re: Wireless Router into Netopia Router Into VPN

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Lanwench [MVP - Exchange] (lanwench_at_heybuddy.donotsendme.unsolicitedmail.atyahoo.com)
Date: 07/22/04 

Date: Thu, 22 Jul 2004 12:15:18 -0400

If you're using the same IP network/subnet on your wireless access
point/devices as on your domain, you can't use VPN - you're already on the
same network. VPN requires two different IP networks.

Wireless networks can be great, but open you up to a lot of security risks.
Make sure you

a) disable SSID broadcast
b) change the admin password on the access point
c) ideally use WPA; if not possible, at the very least force 128-bit SSL

IBC wrote:
> We purchased an inexpensive wireless router to do some experimenting
> in the office. I have plugged the WAN port of the new wireless router
> (DLink DI-624) into one of the LAN ports on our Netopia router. This
> set up works perfectly for creating a separate network for the
> wireless and I can access the internet just fine. The trouble comes
> when I try to VPN from the wireless into our network. I get the
> "Connecting" screen, I get the "Verifying username and Password"
> screen, but it just hangs there until it times out. I have a wireless
> DLink setup at home and I have successfully VPN'ed into the office
> with it several times. I brought that laptop into the office, and it
> does the same hanging routine. So, I KNOW I have the PC set up
> properly, and the logs show a connection attempt, but there isn't any
> username or password info in the log.
>
> I checked the router log and see a suspicious pattern of dropped
> packets (ICMP from the netopia on what looks to be port 32). This is
> a default rule on the router. Maybe a red herring.
>
> Any ideas where to look?
>
> (I understand I could have gotten a WAP and tied right into the
> network, but we wanted the functionality of letting clients browse
> the internet while staying off our network)

But it sounds like your wireless access point is indeed on your network -
no? Am I misreading your post?
>
> Thanks!

Relevant Pages

  • RE: RE: Wireless security and VPN
    ... IPSec alone is enough to secure all your network data. ... Subject: Wireless security and VPN ... authorized to receive the communication. ...
    (Security-Basics)
  • RE: Wireless Security Strategy
    ... Use a VPN for all data traffic. ... From my perspective we are seriously considering creating wireless subnets ... would only be able to talk to a terminal/CITRIX server on the corporate ... wireless network and that would be in encrypted form due to the VPN. ...
    (Security-Basics)
  • RE: Wireless Security Strategy
    ... Make sure that all wireless network ... I'm new to this VPN lark.. ... >>would only be able to talk to a terminal/CITRIX server on the ...
    (Security-Basics)
  • TidBITS#785/27-Jun-05
    ... Jeff Carlson continues his exploration of computerized poker ... and Adam examines both the Canary Wireless ... Rogue Amoeba's Audio Hijack Pro ... A Canary in the Network ...
    (comp.sys.mac.digest)
  • Re: Linksys NAS200 Network Storage adapter
    ... The only two wireless network settings that are of any consequence are the SSID and the encryption method and password. ... either click the "Print Network Settings" button on the final screen of the Wizard or simply access the appropriate XML file and get at them that way and then use the information to configure the router manually as I explained earlier. ... I've read thru some of the MS web site on that product and it appears to do everything a NAS will do plus other cool features, such as, with an xbox360 with the wireless adapter, I can stream my video/pics to my TV for family viewing. ...
    (microsoft.public.windowsxp.network_web)