Re: Client VPN logon

Hi Neil:

That router is really an entry level firewall that will not allow "normal"
users to get past it. You must either be connecting from a location that
has the same (or compatible) firewall that has a tunnel already created, or
use the Netgear "mobile user" software client.

Many mfgs do this... some better than others. One problem with the netgear
implimentation is that the software, at least the versions that I have seen,
will not allow other mfgs software to exist on the same computer. Therefore
you are limited, on the computer which the netgear remote client software is
installed, to only communicating with a netgear firewall.

Note that this would NOT prevent you from communicating with a normal, not
firewalled, vpn.

Anna Clark


"Neil Raffan >" <<reply to group> wrote in message
news:eXcoUAT7GHA.4996@xxxxxxxxxxxxxxxxxxxxxxx
Currently have a Netgear DG834
As I understand it supports passthrough when NAT is off.

Netgear offer the FVS318 that provides 8 IPSec tunnels but they say it
requires 'client software' so I didn't know if that would include SBS2000.
Basically I was hoping someone would have a recommended hardware solution.


Regards


"Michael Jenkin [SBS-MVP]" <michael.jenkin@xxxxxxxx> wrote in message
news:%23rvHVnS7GHA.1492@xxxxxxxxxxxxxxxxxxxxxxx
Which router are you using ? Have you reffered to their manual and onlne
technical support ?

Thanks

Neil Raffan > wrote:

I want to get a client to logon remotely to SBS2K, but the client is
behind
a router that is performing NAT. As I understand it the NAT effectively
breaks the VPN tunnel even though it supports VPN passthrough - i.e.
the
passthrough only works when NAT is turned off?
How do I implement this?


Regards



--
Michael J. Jenkin MVP - SBS, MCP, Small Business Specialist, Senior
Systems Engineer
Visit http://www.mickyj.com




.

Relevant Pages

  • Re: New modem and iptables...
    ... The router performs firewall and NAT functions ... If you want to persuade me it's a modem, ... it's a router and _it_ has your public Internet address. ... It also does NAT (otherwise you couldn't have a private IP address on ...
    (Fedora)
  • Re: Would a firewall prevent Sasser worm?
    ... >> the same level of protection that I would have with any NAT router? ... >There are a variety of known attacks which can crash routers, ... >Firewall capability allows you to modify the NAT behaviour to allow selected ...
    (comp.security.misc)
  • Re: Would a firewall prevent Sasser worm?
    ... >> the same level of protection that I would have with any NAT router? ... >There are a variety of known attacks which can crash routers, ... >Firewall capability allows you to modify the NAT behaviour to allow selected ...
    (comp.security.firewalls)
  • Re: Would a firewall prevent Sasser worm?
    ... >> the same level of protection that I would have with any NAT router? ... >There are a variety of known attacks which can crash routers, ... >Firewall capability allows you to modify the NAT behaviour to allow selected ...
    (alt.computer.security)
  • Re: IP Addressing
    ... Address of the ISA server? ... firewall and router). ... On the firewall create a static NAT entry as I wrote ...
    (comp.dcom.sys.cisco)
Quantcast