Re: Client VPN logon

Hi Neil:

Below is pasted from the netgear product page...bolding is mine.

If you link through to the support for this product there are several versions of this device. My suggestion is that you read the manual for the specifice version, and if still in doubt, contact Netgear.

http://www.netgear.com/Products/RoutersandGateways/WiredRouters/DG834.aspx

http://kbserver.netgear.com/products/DG834.asp

on this above page are links under each version to the downloads with manuals

and there are links to how to create VPN's there as well.

From:http: //www.netgear.com/Products/RoutersandGateways/WiredRouters/DG834.aspx

Secure
Double Firewall using Stateful Packet Inspection (SPI) and Intrusion Control features Denial of Service protection from hacker attacks, while VPN (Virtual Private Network) pass-through permits secure access to your office or corporate network and enables you to host VPN services. Content filtering lets you control access to inappropriate web sites and limit usage by time of day. Logs browsing activities and provides optional e-mail alerts so you can monitor access. DMZ support allows unrestricted access from the Internet to one computer (for hosting web services).


Anna



"Neil Raffan" <reply to group> wrote in message news:es6MTzT7GHA.3384@xxxxxxxxxxxxxxxxxxxxxxx
Anna,

Sorry, but are you saying that the DG834 at the client end will support VPN
access to the server with NAT turned on?
My (limited!) understanding was that it wouldn't, hence the reason for the
original question.


Regards


"Anna Clark" <anna.clark(remove this)@verizon.net> wrote in message
news:%23ydmUrT7GHA.4476@xxxxxxxxxxxxxxxxxxxxxxx
Neil:

I just re read your post... sorry I missed that the Netgear is at the
remote
end.

My reply assumed that the router was at the target end of the VPN.

I suspect that the eu, or perhaps the routers defaults, have closed some
ports/protocols that are needed. Usually these are Ports 1723 and
protocol
GRE 47.

If you don't find that the router is blocking, contact the mfg if it
continues to block this eu from connecting back to the SBS.

Anna


"Anna Clark" <anna.clark(remove this)@verizon.net> wrote in message
news:u5Q5MKT7GHA.4996@xxxxxxxxxxxxxxxxxxxxxxx
Hi Neil:

That router is really an entry level firewall that will not allow
"normal"
users to get past it. You must either be connecting from a location that
has the same (or compatible) firewall that has a tunnel already created,
or
use the Netgear "mobile user" software client.

Many mfgs do this... some better than others. One problem with the
netgear
implimentation is that the software, at least the versions that I have
seen,
will not allow other mfgs software to exist on the same computer.
Therefore
you are limited, on the computer which the netgear remote client software
is
installed, to only communicating with a netgear firewall.

Note that this would NOT prevent you from communicating with a normal,
not
firewalled, vpn.

Anna Clark


"Neil Raffan >" <<reply to group> wrote in message
news:eXcoUAT7GHA.4996@xxxxxxxxxxxxxxxxxxxxxxx
Currently have a Netgear DG834
As I understand it supports passthrough when NAT is off.

Netgear offer the FVS318 that provides 8 IPSec tunnels but they say it
requires 'client software' so I didn't know if that would include
SBS2000.
Basically I was hoping someone would have a recommended hardware
solution.


Regards


"Michael Jenkin [SBS-MVP]" <michael.jenkin@xxxxxxxx> wrote in message
news:%23rvHVnS7GHA.1492@xxxxxxxxxxxxxxxxxxxxxxx
Which router are you using ? Have you reffered to their manual and
onlne
technical support ?

Thanks

Neil Raffan > wrote:

I want to get a client to logon remotely to SBS2K, but the client is
behind
a router that is performing NAT. As I understand it the NAT
effectively
breaks the VPN tunnel even though it supports VPN passthrough - i.e.
the
passthrough only works when NAT is turned off?
How do I implement this?


Regards



--
Michael J. Jenkin MVP - SBS, MCP, Small Business Specialist, Senior
Systems Engineer
Visit http://www.mickyj.com







Relevant Pages

  • Re: SBS 2003 Misconfigured?
    ... I've thrown quite a bit at them, and just have to disagree that they are inherently less secure than the netgear. ... setup DHCP and I have also gone in and manually created a new scope ... when I first used the Netgear router with SBS 2003, ... than one SBS server in a company makes no sense. ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 2003 Misconfigured?
    ... Yeah, maybe it's not that different from the Netgear, for all that. ... that when I first used the Netgear router with SBS 2003, ... tech spend 4+ hours on my system, and then tell me to enable DHCP ... more than one SBS server in a company makes no sense. ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 2003 Misconfigured?
    ... removed the Netgear FVG318 router. ... Reconfigured the Netopia to use ... Why didn't you just disconnect the Netgear and not touch the ... workstations and put 1 cable into the netopia, ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 2003 Misconfigured?
    ... I agree, with what I could have / should have done as far as the router, ... Why didn't you just disconnect the Netgear and not touch the Netopia? ... Which, based on the configuration you gave, is part of the ...
    (microsoft.public.windows.server.sbs)
  • Re: Port scans through NAT router?
    ... >> the Internet via a Netgear NAT router. ... >> understand how that can be happening, because in the Netgear router, I ... >> So, my question is "How can these port scans, on those ports, which are ...
    (comp.security.firewalls)
Loading