Re: VPN IPSEC issue, can you please help?

A few minor questions before we jump in any further:

1) What version of SBS? SBS2003 standard or premium, and original or R2?
2) If premium, is ISA installed?

-Cliff


"Sally Mathews" <SallyMathews@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:EF1155DB-0E75-4940-ACDA-0107784F7FEF@xxxxxxxxxxxxxxxx
I am at the end of my rope and am reaching out for some knowledge, please
share what you can.

I have a SBS2003 server with 2 nics. My inside NIC is set to hand out IPs
through DHCP with a scope of 192.168.16.*, my outside NIC is on 192.168.1.*
and I do have a Linksys router set up with a static IP to the ISP. My
network, exchange, and other apps have been fine but I am up against a wall
with a state mandate which is forcing us to VPN using an AT&T global network
client VPN.

The point I am at now is that I can connect to the VPN if I set my router's
static IP config to a laptop and connect directly to the ISPs DSL gateway. I
can also connect if I plug into my router and turn DHCP on and let the router
give me an IP.

What I cannot do is connect to the VPN from any domain (or a vanilla XP
setup without domain configured). I receive a IPSEC error telling me that
protocol 50 or Port 4500 are not configured to allow IPSEC. For months I had
been back and forth with the ISP because I had thought it was there problem
(I was unable to ever connect unless I went through another ISP in another
town). But today the ISP made some configuration changes and with my vanilla
XP laptop was able to connect from there location, then came to my location
and was able to make the successful connections I discussed above.

They are telling me that my server is acting as a router and that I need to
configure the UDP port on the DHCP scope. I am not sure exactly where to
open ports or if I can from the server and have looked all over the place.

In addition I am running Symantec EndPoint and not the WIndows firewall (if
that matters).

I will capture my server's IPCONFIG and see if there is anyone who can help.
The ISP also noted that if I would just run DHCP from the linksys router I
shouldn't have the problem since the router is configured with all of the
ports necessary for the VPN connection. Unfortunately I don't think I can do
that without unravelling a server configuration that is working otherwise.

Please assist.. suggestions? I appreciate your help!!!


.

Relevant Pages

  • Re: VPN IPSEC issue, can you please help?
    ... > and I do have a Linksys router set up with a static IP to the ISP. ... > client VPN. ... > that without unravelling a server configuration that is working> otherwise. ...
    (microsoft.public.windows.server.sbs)
  • Configuring router for VPN passthrough
    ... to VPN requests, and have the laptop configured to connect as a VPN ... The connection made from inside the firewall (directly to the ... I think it has to be the router configuration for VPN ...
    (comp.security.firewalls)
  • Re: VPN Setup
    ... I also believe you should only have one method of VPN. ... I believe you should turn off DCHP on the Symantec Device and configure DCHP on the SBS server. ... The modem is provided by the ISP and the account is dynamic. ... Although the IP's on the server and the router do not change. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN IPSEC issue, can you please help?
    ... I have a SBS2003 server with 2 nics. ... and I do have a Linksys router set up with a static IP to the ISP. ... that without unravelling a server configuration that is working otherwise. ...
    (microsoft.public.windows.server.sbs)
  • Re: How to generate RSA key in CISCO Router 2811
    ... restarting the router, the key is gone. ... The RSA key on my PC is in .txt file format. ... the only way I can think to proceed is to copy the configuration from ... setup my cisco VPN client to comunicate to VPN IOS router. ...
    (comp.dcom.sys.cisco)
Loading