This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

HELP! VPN on my ASL Firewall

I have been trying to get SOMETHING to work and am having VERY little success.

I am using ASL as my firewall that has 3 interfaces: DMZ, WAN and LAN. All interfaces are public IP space subnetted from the same class C address.

I have a DSL line at home and am trying to get a VPN working, but every time I try, I have lots and lots of problems.

1. Can I really get the VPN working on the same box that is the firewall?
2. Should I be using IPSEC or PPTP?
3. I want the VPN client to appear as if it is connected to the LAN. What interface should be configured in the setup? The WAN, the LAN?
4. It seems everytime I try this, what invariably ends up happening is I lock out the LAN or even the entire internal network from the internet.

I have read the howto's several times, but due to them being out-of-date, I am not sure what to do. I am using ASL 2.02 and SSH-Sentinal 1.2.3

Please help if you can.

This thread was automatically locked due to age.

0 ollion over 23 years ago

Greg,

are you connected to an DSL router or directly
with your PC? If connected with a router using
masquerading you could run into problems, because
of missing NAT traversal support for IPSEC, same problem
exists with PPTP (both protocols use portless protocols,
ESP IP 50, PPTP GRE 47)

If you are connected directly and you want to use IPSEC
you have to configure the firewall to accept any incoming
connection because of of your dynamically assigned
addresses (are the addresses static?).

If your PC is directly connected to DSL I would
use PPTP with strongt passwords.

regards
ollion

[ 15 February 2002: Message edited by: ollion ]
Cancel
Vote Up 0 Vote Down

Cancel