05-25-2004, 06:35 AM | #1 (permalink) |
Runt
Location: Denver
|
Cisco VPN & Linsksys router question
The router is a cable/dsl linksys befsr41 connected to comcast broadband.
When I vpn into work while behind the router I am unable to access the net. Removing the router, I am able to access the net via my companie's connection. I have tried a DMZ to no avail. It's not a big deal but I'm getting tired of switching eathernet connections before I vpn into work for the day. Any thoughts?
__________________
<--The great infidel--> |
05-25-2004, 02:43 PM | #2 (permalink) |
Psycho
Location: Boston, MAss., USA
|
Having the vpn software version might help.
Check for something called IPSec Pass through (advanced area, on filters tab), turn that on, and you should be ok. edit: check for that info on the linksys, that is!
__________________
I'm gonna be rich and famous, as soon I invent a device that lets you stab people in the face over the internet. |
05-26-2004, 06:39 AM | #4 (permalink) |
Devils Cabana Boy
Location: Central Coast CA
|
Talk to your IT guys at work and have them lead you through it, they know their network (or better) and will know how to go about this with out compromising security.
__________________
Donate Blood! "Love is not finding the perfect person, but learning to see an imperfect person perfectly." -Sam Keen |
05-26-2004, 06:53 AM | #5 (permalink) | |
Psychoholic
Location: Ein tov she'ein bo ra!
|
Quote:
__________________
Music is holy, art is sacred, and creativity is power... Think for Yourself Question Authority |
|
05-26-2004, 06:53 AM | #6 (permalink) |
Runt
Location: Denver
|
That'd work. However, they are puzzled also. The solution was to remove my router from the equation. If I can't get it resloved here I will move onto other tech forums. Thought I'd give it a try here first.
__________________
<--The great infidel--> |
05-26-2004, 06:55 AM | #7 (permalink) | |
Psychoholic
Location: Ein tov she'ein bo ra!
|
Quote:
__________________
Music is holy, art is sacred, and creativity is power... Think for Yourself Question Authority |
|
05-26-2004, 07:39 AM | #8 (permalink) |
Runt
Location: Denver
|
Yes, I'm using NAT. And yes, I have talked to our IS boy at work. My company has 90 people with 1 IS person in each of the 2 locations. I am the backup IS person at my location. However, I stick to very basic problems. I'm primarily an OCPDBA.
Do you think the NAT is the problem?
__________________
<--The great infidel--> |
05-26-2004, 09:19 AM | #9 (permalink) |
Psychoholic
Location: Ein tov she'ein bo ra!
|
Well, you can work without the router. What is the router doing that is causing your problems? This is a basic layer 3 switch. You have an public routable address translated into a private address I assume. You can get connected to VPN but unable to route out to the internet? Have you tried to trace your path out to an internet address to determine where the problem lies?
__________________
Music is holy, art is sacred, and creativity is power... Think for Yourself Question Authority |
05-26-2004, 09:37 AM | #10 (permalink) |
Stop. Think. Question.
Location: Redondo Beach, CA
|
I'm using a Linksys rouer and Cisco VPN client 4.03 on XP. Works like a champ through the router - no config was necessary. I do have IPSEC passthru enabled.
__________________
How you do anything is how you do everything. |
05-26-2004, 11:36 AM | #11 (permalink) |
Runt
Location: Denver
|
Damn it. I'm brain dead.
It occured to me that this may be a DNS issue. Here's some results: In vpn behind router: can't ping the companie's DNS server In VPN without the router: can ping the companies DNS server Here's my next question: Could this be caused by my company using the same IP range as my router? Ex: company DNS server is 192.168.1.3 and my router is 192.168.1.1
__________________
<--The great infidel--> |
05-26-2004, 11:54 AM | #12 (permalink) |
Runt
Location: Denver
|
Okay. I fixed it. My companie's headquarters use 192.168 private IPs. My location uses 10.245. I changed my router to 172.16 and switched from DHCP to a static IP using 172.16. For some strange reason linksys only uses 192.168 for private IPs. Thanks for the help.
__________________
<--The great infidel--> |
05-26-2004, 04:41 PM | #13 (permalink) |
Stop. Think. Question.
Location: Redondo Beach, CA
|
My private LAN uses 192.168 and the VPN uses 167. I haven't needed to change my DNS and I'm using a static IP of 192.168.1.100 and local DNS of 192.168.1.98 (via Windows 2000 Server).
Glad to hear it's working for you.
__________________
How you do anything is how you do everything. |
Tags |
cisco, linsksys, question, router, vpn |
|
|