|
|
Question : Problem: Flowpoint 2200 SDSL Router(Covad) and SSH Sentinal 1.4 VPN
|
|
I was asked to set up a tunnel connection between client and one of his customer using SSH Sentinial 1.4 on one side and a Linksys VPN Router.
Set up via dial-up and all is happy and working.
Then ask to set it up at a remote office via broadband to Linksys using Sentinal.
Arrived and found old Flowpoint 2210 SDSL Router(certified for Northpoint) using Covad 192k SDSL.
Set up client computer to static IP then a serial connection and session to Flowpoint
system addServer (client computer IP) udp 1723 save system addServer (client computer IP) tcp 1723 save system addServer (client computer IP) udp 47 save system addServer (client computer IP) tcp 47 save system addServer (client computer IP) udp 500 (IKE) save reboot
Sentinial VPN connects to client to Linksys VPN Router but can not ping or see wins server
I'm still searching the knowledgebase over at Efficent.. but thought I see if anyone else has had this issue.
Kirk **********************************************************
In response to pedrow's comments -
Yes - I see that the preferred method is system addServer (client computer IP) 47 0 save
I'm looking at this area I read in MS Networking knowledgebase article, for the Flowpoint/Efficient VPN, Secure VPN, and Firewall products. It makes comments about :
The UDP relay and wins server commands allow the MS networking to function through the VPN tunnel. The wins server addresses may be configured into each workstation statically or the router can serve using DHCP. The IP Filter command will accept packets to and from the IP address of the Efficient router at the far end of the tunnel. For installation of WINS server consult the Windows manual or Microsoft directly. system addudprelay
system addudprelay 192.168.254.50 137 139
(kirk's comment - I expect this is the client's IP behind the firewall - flowpoint 2210) dhcp set valueoption 44
dhcp set valueoption 44 192.168.254.50 192.168.254.60
(kirk's comment - SSH Sentinial should have this part as the WINS server it part of VPN profile)
remote ipfilter insert input accept
-sa < IP address of far end>
remote ipfilter insert output accept
-da < IP address of far end>
remote ipfilter insert input accept -sa 200.x.x.x internet
remote ipfilter insert output accept -da 200.x.x.x internet
I'm spacing out right now about the have to get another cup of coffee....
I have a old IDSL Flowpoint laying around that later I'm going to hook up and review the Command line process again, before I go back out to the site.
**********************************************************
After forgetting about it and it's the 4th quarter Oakland 34 Tennessee 24 -
I just remember that the first default script you do in setting up the old flowpoints in command line is -
rem disable internet
Which errors out on many of them.
Then you setup and enable the one you want to use ---
In Covad's case it's dslip -
regards
*********************************************************
In thinking about after I arrived at the site. About was not the problem -
problem was protocol 50
system addServer (client computer IP) 50 0 save
Kirk
|
Answer : Problem: Flowpoint 2200 SDSL Router(Covad) and SSH Sentinal 1.4 VPN
|
|
tcp and udp 47? or do you mean ip *protocol* 47(GRE)?
|
|
|
|