|
Home > Archive > VPN > December 2007 > How do I test (or troubleshoot) VPN server setup?
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
How do I test (or troubleshoot) VPN server setup?
|
|
| xp_newbie@yahoo.com 2007-11-27, 1:17 am |
| I have a NETGEAR ProSafe FVS328 router. I am trying to configure it to
serve remote clients who wish to connect to my LAN.
I carefully followed the instructions here:
http://kbserver.netgear.com/kb_web_files/n101418.asp
I am not at the stage yet of even attempting to install a VPN client
software on a PC in order to test the above. I am trying to check/
verify each step and I thought that the first confirmation that
something has changed (properly) on my router is that a simple port
scan via a web site like http://www.grc.com would at least reveal port
500 (IKE) as being "unstealthed".
However, the ShieldUp test shows that all ports in my Internet
connection are still stealthed.
How do I approach this problem correctly?
Thanks,
Alex
P.S. My NETGEAR FVS328 router is connected to the Internet via a
Westell 327 DSL modem/router. I "disabled" its router by configuring
it to pass "Single Static IP" (aka IP Passthrough) to the FVS328. I
hope that this is the right way to go.
| |
| xp_newbie@yahoo.com 2007-11-27, 1:12 pm |
| On Nov 27, 12:24 am, xp_new...@yahoo.com wrote:
> I have a NETGEAR ProSafe FVS328 router. I am trying to configure it to
> serve remote clients who wish to connect to my LAN.
>
> I carefully followed the instructions here:
>
> http://kbserver.netgear.com/kb_web_files/n101418.asp
>
> I am not at the stage yet of even attempting to install a VPN client
> software on a PC in order to test the above. I am trying to check/
> verify each step and I thought that the first confirmation that
> something has changed (properly) on my router is that a simple port
> scan via a web site likehttp://www.grc.comwould at least reveal port
> 500 (IKE) as being "unstealthed".
>
> However, the ShieldUp test shows that all ports in my Internet
> connection are still stealthed.
>
> How do I approach this problem correctly?
>
> Thanks,
> Alex
>
> P.S. My NETGEAR FVS328 router is connected to the Internet via a
> Westell 327 DSL modem/router. I "disabled" its router by configuring
> it to pass "Single Static IP" (aka IP Passthrough) to the FVS328. I
> hope that this is the right way to go.
OK, by now I at least know that I should not have tested the IKE port
using www.grc.com. Shields Up (www.grc.com) tests against the PC that
runs it (via the browser), whether behind the router's NAT or
connected directly to the Internet. In the case of VPK/IKE there is no
PC associated with it, so of course it will report it as stealthed.
I am still interested, though, to know what is the correct way to find
out what is exposed to the Internet once I enable VPN serving on my
router.
Thanks,
Alex
| |
| Fred Jumayao 2007-12-28, 1:15 am |
| I think you need to first of all set your Westel 327 to bridge mode if
you are using a static IP. Get the info from your ISP. Most modems
have VPN pass through, so once enabled it should allow.
I've set up the Prosafe FVG318 VPN router with a prosafe software client
and Westell 327 on the other end.
Fred
xp_newbie@yahoo.com wrote:
> I have a NETGEAR ProSafe FVS328 router. I am trying to configure it to
> serve remote clients who wish to connect to my LAN.
>
> I carefully followed the instructions here:
>
> http://kbserver.netgear.com/kb_web_files/n101418.asp
>
> I am not at the stage yet of even attempting to install a VPN client
> software on a PC in order to test the above. I am trying to check/
> verify each step and I thought that the first confirmation that
> something has changed (properly) on my router is that a simple port
> scan via a web site like http://www.grc.com would at least reveal port
> 500 (IKE) as being "unstealthed".
>
> However, the ShieldUp test shows that all ports in my Internet
> connection are still stealthed.
>
> How do I approach this problem correctly?
>
> Thanks,
> Alex
>
> P.S. My NETGEAR FVS328 router is connected to the Internet via a
> Westell 327 DSL modem/router. I "disabled" its router by configuring
> it to pass "Single Static IP" (aka IP Passthrough) to the FVS328. I
> hope that this is the right way to go.
|
|
|
|
|