 |
| Register | FAQ | Members List | Calendar | Links | Search | Today's Posts | Mark Forums Read |
|
||||||||
|
|
|||||||
 |
|
|
Thread Tools | Display Modes |
|
#1
12-12-2003, 01:42 PM
|
Having troyble setting up VPN with SBS 2003
I am having trouble setting up a VPN connection to a new
SBS 2003 install. I have one Nic card for the server and a cable/DSL router to the network. I get a verifying user name and password, but it times out and does not make the final connection. I have forwarded ports 137-138 UDP and 139 TCP to the servers internal IP address. Port 53, 500, 1701 & 1723 are all forwarded to the server's address as well. The user has permission to remotely access the network. Am I missing something? I am trying to connect using PPTP. TIA, Greg Greg 
|
|
#2
12-12-2003, 02:42 PM
|
|||
|
|||
|
Re: Having troyble setting up VPN with SBS 2003
quoted from http://www.ChicagoTech.net
Which ports need to be opened for running VPN A: PPTP VPN uses TCP Port 1723, IP Protocol 47 (GRE); L2TP: UDP Port 1701; IPSec: Pass IP protocol 50 and 51. Note: 47 is a protocol number and not TCP port. The protocol name is GRE. It'll make a big difference when configuring your firewall or router. -- For more and other information, go to http://www.ChicagoTech.net Don't send e-mail or reply to me except you need consulting services. Posting on MS newsgroup will benefit all readers and you may get more help. Robert Lin, MS-MVP, MCSE & CNE Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on http://www.ChicagoTech.net This posting is provided "AS IS" with no warranties. "Greg" <(E-Mail Removed)> wrote in message news:0c4201c3c0b5$d9156f20$(E-Mail Removed)... > I am having trouble setting up a VPN connection to a new > SBS 2003 install. I have one Nic card for the server and > a cable/DSL router to the network. I get a verifying user > name and password, but it times out and does not make the > final connection. I have forwarded ports 137-138 UDP and > 139 TCP to the servers internal IP address. Port 53, 500, > 1701 & 1723 are all forwarded to the server's address as > well. The user has permission to remotely access the > network. Am I missing something? I am trying to connect > using PPTP. > > TIA, > Greg
|
|
#3
12-13-2003, 01:46 AM
|
|||
|
|||
|
Re: Having troyble setting up VPN with SBS 2003
As Bob said, you only need to forward tcp port 1723 from the router to the
server for PPTP to work. You should then be able to make a connection using the router's public IP. Have you verified the server setup by connecting locally from a LAN client to the server's LAN IP? Your router must allow GRE in both directions. All "tunnel" traffic is encrypted and travels through the Internet as the payload of IP packets with GRE headers. So PPTP can set up the tunnel, but nothing goes through it if the router blocks GRE. "Robert L [MS-MVP]" <(E-Mail Removed)> wrote in message news:(E-Mail Removed)... > quoted from http://www.ChicagoTech.net > Which ports need to be opened for running VPN > > A: PPTP VPN uses TCP Port 1723, IP Protocol 47 (GRE); L2TP: UDP Port 1701; > IPSec: Pass IP protocol 50 and 51. Note: 47 is a protocol number and not > TCP port. The protocol name is GRE. It'll make a big difference when > configuring your firewall or router. > -- > For more and other information, go to http://www.ChicagoTech.net > > > Don't send e-mail or reply to me except you need consulting services. > Posting on MS newsgroup will benefit all readers and you may get more help. > > Robert Lin, MS-MVP, MCSE & CNE > Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on > http://www.ChicagoTech.net > This posting is provided "AS IS" with no warranties. > > "Greg" <(E-Mail Removed)> wrote in message > news:0c4201c3c0b5$d9156f20$(E-Mail Removed)... > > I am having trouble setting up a VPN connection to a new > > SBS 2003 install. I have one Nic card for the server and > > a cable/DSL router to the network. I get a verifying user > > name and password, but it times out and does not make the > > final connection. I have forwarded ports 137-138 UDP and > > 139 TCP to the servers internal IP address. Port 53, 500, > > 1701 & 1723 are all forwarded to the server's address as > > well. The user has permission to remotely access the > > network. Am I missing something? I am trying to connect > > using PPTP. > > > > TIA, > > Greg > >
|
|
#4
12-14-2003, 12:46 AM
|
|||
|
|||
|
Re: Having troyble setting up VPN with SBS 2003
Thanks for the tip. It seems to be working.
Greg >-----Original Message----- >quoted from http://www.ChicagoTech.net >Which ports need to be opened for running VPN > >A: PPTP VPN uses TCP Port 1723, IP Protocol 47 (GRE); L2TP: UDP Port 1701; >IPSec: Pass IP protocol 50 and 51. Note: 47 is a protocol number and not >TCP port. The protocol name is GRE. It'll make a big difference when >configuring your firewall or router. >-- >For more and other information, go to http://www.ChicagoTech.net > > >Don't send e-mail or reply to me except you need consulting services. >Posting on MS newsgroup will benefit all readers and you may get more help. > >Robert Lin, MS-MVP, MCSE & CNE >Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on >http://www.ChicagoTech.net >This posting is provided "AS IS" with no warranties. > >"Greg" <(E-Mail Removed)> wrote in message >news:0c4201c3c0b5$d9156f20$(E-Mail Removed)... >> I am having trouble setting up a VPN connection to a new >> SBS 2003 install. I have one Nic card for the server and >> a cable/DSL router to the network. I get a verifying user >> name and password, but it times out and does not make the >> final connection. I have forwarded ports 137-138 UDP and >> 139 TCP to the servers internal IP address. Port 53, 500, >> 1701 & 1723 are all forwarded to the server's address as >> well. The user has permission to remotely access the >> network. Am I missing something? I am trying to connect >> using PPTP. >> >> TIA, >> Greg > > >. >
|
|
#5
12-15-2003, 01:44 PM
|
|||
|
|||
|
Re: Having troyble setting up VPN with SBS 2003
I have port 1723 & 1701 forwarded to the servers LAN IP
address. I still cannot connect through the VPN. I only have one NIC on the server and a Linksys cable/dsl router. The clients on the LAN connect fine and can see the server. I'm stumped. Greg >-----Original Message----- > As Bob said, you only need to forward tcp port 1723 from the router to the >server for PPTP to work. You should then be able to make a connection using >the router's public IP. Have you verified the server setup by connecting >locally from a LAN client to the server's LAN IP? > > Your router must allow GRE in both directions. All "tunnel" traffic is >encrypted and travels through the Internet as the payload of IP packets with >GRE headers. So PPTP can set up the tunnel, but nothing goes through it if >the router blocks GRE. > > >"Robert L [MS-MVP]" <(E-Mail Removed)> wrote in message >news:(E-Mail Removed)... >> quoted from http://www.ChicagoTech.net >> Which ports need to be opened for running VPN >> >> A: PPTP VPN uses TCP Port 1723, IP Protocol 47 (GRE); L2TP: UDP Port 1701; >> IPSec: Pass IP protocol 50 and 51. Note: 47 is a protocol number and not >> TCP port. The protocol name is GRE. It'll make a big difference when >> configuring your firewall or router. >> -- >> For more and other information, go to http://www.ChicagoTech.net >> >> >> Don't send e-mail or reply to me except you need consulting services. >> Posting on MS newsgroup will benefit all readers and you may get more >help. >> >> Robert Lin, MS-MVP, MCSE & CNE >> Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on >> http://www.ChicagoTech.net >> This posting is provided "AS IS" with no warranties. >> >> "Greg" <(E-Mail Removed)> wrote in message >> news:0c4201c3c0b5$d9156f20$(E-Mail Removed)... >> > I am having trouble setting up a VPN connection to a new >> > SBS 2003 install. I have one Nic card for the server and >> > a cable/DSL router to the network. I get a verifying user >> > name and password, but it times out and does not make the >> > final connection. I have forwarded ports 137-138 UDP and >> > 139 TCP to the servers internal IP address. Port 53, 500, >> > 1701 & 1723 are all forwarded to the server's address as >> > well. The user has permission to remotely access the >> > network. Am I missing something? I am trying to connect >> > using PPTP. >> > >> > TIA, >> > Greg >> >> > > >. >
|
|
#6
12-16-2003, 05:35 AM
|
|||
|
|||
|
Re: Having troyble setting up VPN with SBS 2003
You don't need 1701. That is for L2tp. (And it is the udp, not tcp
port.) If the Linksys blocks GRE, you won't get any PPTP traffic through. If the Linksys has a DMZ port, test the connection using that. (Just to prove to yourself that GRE is the problem). "Greg" <(E-Mail Removed)> wrote in message news:067d01c3c311$9f8575d0$(E-Mail Removed)... > I have port 1723 & 1701 forwarded to the servers LAN IP > address. I still cannot connect through the VPN. I only > have one NIC on the server and a Linksys cable/dsl router. > The clients on the LAN connect fine and can see the > server. I'm stumped. > > Greg > >-----Original Message----- > > As Bob said, you only need to forward tcp port 1723 > from the router to the > >server for PPTP to work. You should then be able to make > a connection using > >the router's public IP. Have you verified the server > setup by connecting > >locally from a LAN client to the server's LAN IP? > > > > Your router must allow GRE in both directions. > All "tunnel" traffic is > >encrypted and travels through the Internet as the payload > of IP packets with > >GRE headers. So PPTP can set up the tunnel, but nothing > goes through it if > >the router blocks GRE. > > > > > >"Robert L [MS-MVP]" <(E-Mail Removed)> wrote in message > >news:(E-Mail Removed)... > >> quoted from http://www.ChicagoTech.net > >> Which ports need to be opened for running VPN > >> > >> A: PPTP VPN uses TCP Port 1723, IP Protocol 47 (GRE); > L2TP: UDP Port 1701; > >> IPSec: Pass IP protocol 50 and 51. Note: 47 is a > protocol number and not > >> TCP port. The protocol name is GRE. It'll make a big > difference when > >> configuring your firewall or router. > >> -- > >> For more and other information, go to > http://www.ChicagoTech.net > >> > >> > >> Don't send e-mail or reply to me except you need > consulting services. > >> Posting on MS newsgroup will benefit all readers and > you may get more > >help. > >> > >> Robert Lin, MS-MVP, MCSE & CNE > >> Networking, Internet, Routing, VPN, Anti-Virus, Tips & > Troubleshooting on > >> http://www.ChicagoTech.net > >> This posting is provided "AS IS" with no warranties. > >> > >> "Greg" <(E-Mail Removed)> wrote in > message > >> news:0c4201c3c0b5$d9156f20$(E-Mail Removed)... > >> > I am having trouble setting up a VPN connection to a > new > >> > SBS 2003 install. I have one Nic card for the server > and > >> > a cable/DSL router to the network. I get a verifying > user > >> > name and password, but it times out and does not make > the > >> > final connection. I have forwarded ports 137-138 UDP > and > >> > 139 TCP to the servers internal IP address. Port 53, > 500, > >> > 1701 & 1723 are all forwarded to the server's address > as > >> > well. The user has permission to remotely access the > >> > network. Am I missing something? I am trying to > connect > >> > using PPTP. > >> > > >> > TIA, > >> > Greg > >> > >> > > > > > >. > >
|
|
| Tags |
| 2003, sbs, setting, troyble, vpn |
| Thread Tools | |
| Display Modes | |
|
|
Linear Mode
