Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 3333 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN behind ISP Router

Shane Cook

Hi guys,

Wondering if someone can help me get this going. I've tried a few different configs but just cant seem to get it working.

My setup is as follows

ISP Router -> XG Firewall (DHCP & DNS Server) -> Windows Clients

The ISP Router is placed in DMZ mode -> XG Unit

The router gives the XG an IP of 192.168.0.100 which is used as the WAN port on the XG, but my public IP which is static is 45.X.X.X

All of the information i can find is based upon if the XG is being used as a router and that the WAN port is directly public facing. In this instance its not thought as it goes through the ISP router first which is connected to the internet. 

Everything else works flawlessly, but i'm really hoping to get a VPN connection going for remote access. During the VPN setup on the XG the port selection lists the WAN Port but with the Internal IP of 192.168.0.100

Any help would be appreciated.




This thread was automatically locked due to age.
  • 0

    Hi,

    not sure and do  not understand why you have the ISP router in the DMZ  when it would normally be connected to the WAN port and be in bridge mode. This will then enable the XG to se your internet address and allow you to setup your VPN.

    Ian

  • 0 in reply to rfcat_vk

    For some reason, when I do this I lose internet connectivity.

    I initially had it set up like this with my previous ISP, with the router in bridge mode. However since I switched ISPs, I could no longer get it working. Hence my current connection arrangement.

    I'm not sure if it has something to do with my current ISP being a WISP and using UBNT hardware with specific settings.

  • 0 in reply to Shane Cook

    Hi,

    not sure what you mean by your IPS descriptions?

    Would still put the XG behind the ISP router on the XG WAN interface, you would not need to use MASQ on your rule though because that would be done by the ISP router.

    Of course you will need firewall rules to allow traffic to the DM Z ro WAN interfaces where ever you decide to connect the router.

    Ian