Hello All,
Am travelling the path of getting DSL-connected ASL to talk VPN. Am acquiring knowlege (and with it always more questions) to share.
Netgear DM602: It works in general in router mode talking Ehternet to Astaro but needs to be power cycled every one to two months due to it locking up.
For interest and amusement try telneting to both the DM602's LAN and WAN IP address (default u/p of admin/password). I did this to the WAN IP address and it shows as a GlobespanVirata Titanium. It worries me that with the device is exposed to DOS attack with memory access commands listed, etc. using the "?" command. It also runs an ftp client on both ports. The obvious is to change the password. Still not happy though.
Attempting to VPN through the box was unsuccessful, with some measure of success gotten by setting the DM602 DMZ feature on, and pointing the DMZ to the external interface on the ASL. This generated logs with failure on ASL.
Setting DM602 to modem mode and attempting PPPoA termination on Astaro has failed with the following problems (outlined below). Netgear have informed me that there is a known problem with DM602 in modem mode in the UK. They have been working on a fix for one month already and expect the fix to be released in about another month.
Fabulous threads on DSL modem experiences
http://forum.emule-project.net/index.php?showtopic=4911&st=160
The above lists modems that are okay(60+), problems(15+) or only problems(25+) under load, with NAT issues being dragged into the open under load.
See also http://forum.emule-project.net/index.php?showtopic=39030&st=0 for indepth look to USR 9105.
Points to explore
1. Other modems with no NAT.
2. If service providers have upstream NAT.
3. Netgear suggested BG834 as an alternative that will work as a passthrough for VPN. Some postings confirm this as a solid device.
??? any other users add to the knowlege on what DSL modems/service providers/configurations work for DSL+VPN(preferably IPSEC) please?
Detail of DM602 Modem Mode Problem
=======================
Hardware/Firmware Versions
--------------------------
Astaro version 4.017
Netgear DM602,
firmware version 3.05NUF0-1.38.030131d,
ADSL firmware version T93.3.23
Data and Routing Protocols:
- TCP/IP
- DHCP server and DHCP relay
- RFC 1483, 2684 Bridged Ethernet Encapsulation
- RFC 2516 PPP over Ethernet (PPPoE)
- RFC 2364 PPP over ATM (PPPoA)
Setup Configurations
--------------------
0. Astaro setup
- Eth0 administrative interface 192.168.2.100
- Eth1 external interface 192.168.0.100
- Eth4 DSL modem interface 192.168.1.100
1. Using UK DSL (i.e. from BT)
- PPP over ATM,
- VC Muxing,
- VPI/VCI=0/38
2. With Netgear in Router mode on Eth1; no problems - full internet access.
- Netgear ethernet address 192.168.0.1
- Astaro eth1 address 192.168.0.100
3. With Netgear in Modem mode on Eth4; interface never comes up
- transfer all logon details to Eth4
- Netgear ethernet address 192.168.1.1
- Astaro eth4 address 192.168.1.100
- default GW and IP address assigned by remote
From the demon logs (see fuller attached version) the critical problem seems
to be
>>>>>>>>>
2004-Apr 27 15:54:24 (none) pptp[1852]:
warn[open_inetsock[:P]ptp_callmgr.c:310]: connect: Connection refused
2004-Apr 27 15:54:24 (none) pptp[1852]:
fatal[callmgr_main[:P]ptp_callmgr.c:133]: Could not open control connection to
192.168.1.1
2004-Apr 27 15:54:24 (none) pptp[1849]: fatal[open_callmgr[:P]ptp.c:283]: Call
manager exited with error 256
This thread was automatically locked due to age.
