Re: VPN Firewall for new webserver

From: Leythos (void_at_nowhere.org)
Date: 11/11/04 

Date: Thu, 11 Nov 2004 21:02:55 GMT

In article <2vhvlfF2lshjsU1@uni-berlin.de>, jasee@btinternet.com says...
> Leythos wrote:
> > In article <2vh4ddF1c1v0uU1@uni-berlin.de>, jasee@btinternet.com
> > says...
> >> Leythos wrote:
> >>> In article <2vfo9mF2kb69cU1@uni-berlin.de>, jasee@btinternet.com
> >>> says...
> >>>> There are some differences between the Linksys models in the UK
> >>>> (for the same model numbers!) I've used the BEFSX41 as a VPN
> >>>> endpoint for a Watch guard Server: it proved highly unreliable
> >>>> where the MVPN client running on a W2K machine through a simpler
> >>>> router worked fine. In the UK, from what I've read the Linksys
> >>>> routers either work well or not at all!
> >>>
> >>> Interesting, with the Linksys units, I didn't know there was a
> >>> difference in firmware based on country.
> >>
> >> Yes, there is if you look at the firmare for the US and UK, there
> >> are two different versions
> >>
> >>> Was your connection via a T1
> >>> or some other type?
> >>
> >> No, ordinary ADSL
> >>
> >>>
> >>> I own a WatchGuard Firebox II personally and have a bunch of II and
> >>> III and even a couple SOHO6tc units installed around the country,
> >>> the Linksys units have been painless (the BEFSX41 and the BEFVP41)
> >>> when making the connections and then the rules for their subnets.
> >>>
> >>> Could your problems have been MTU related?
> >>
> >> I didn't get that far (it was set at the default)
> >>
> >>>
> >>> Did you experience a connection problem with the WAN or just the
> >>> IPSec problem?
> >>
> >> The Linksys spontaneously rebooted several times after I'd
> >> configured it for the Wan only.
> >> Others (in the UK) seem to have similar problems with this and other
> >> lInksys routers. I get the feeling that if you're prepared to accept
> >> the defaults then it simply works. However if (for instance) you
> >> don't want to use DHCP then there can be problems.
> >
> > Do you mean DHCP on the WAN side or LAN side?
> >
> > If DHCP on the LAN side, you can leave it enabled, set the scope to
> > 100~ 150, and that still leaves you with almost 200 addresses you can
> > use in a fixed IP mode on the LAN side.
>
> But why set dhcp to work for some ips. Why not simply disable it entirely
> and use fixed ips?

Because I thought that you might need to use it? Also, if you are using
DHCP, you can do an IPCONFIG /ALL and get the gateway, mask, and DNS
information so that you can use it when you assign your fixed IP's.

> > One more thing, it seems like the last firmware update, at least in
> > the US, was a little unstable, the current one seems to be stable. I
> > found this latest updates seems to be rock stable.
>
> The truoble is we are talking (probably) at cross purposes as I think (for
> some reason) the routers are different, for instance the latest UK upgrade
> for the BEFSX41 is BEFSR41V3_v1.05_code.bin (239,616 bytes) whereas the
> latest upgrade for the US BEFSX41 is BEFSX41_V1.50.18_code.bin (1,937,408
> bytes)

I was not talking about BEFSR41, although it was unstable before the
last update. The latest BEFSX41 update, that I loaded from their site,
works and seems quite stable. 

-- 
-- 
spamfree999@rrohio.com
(Remove 999 to reply to me)

Relevant Pages

  • Re: Problems with Internet / Netgear router on SBS 2003
    ... Your SBS network has a 'lan' side; your SBS should be the DHCP server for ... The router also has a 'lan' side, and it's on the same addressing as your ... You can elect to turn on the DHPC server for your router; ... Even without DHCP turned on at the router, you can still connect there, you ...
    (microsoft.public.windows.server.sbs)
  • Re: ISA Server & a WiFi Hotspot (some DHCP for good measure too)
    ... have the LAN side of the wireless router be in the 10.0.0.x ... your SBS has two nics - its WAN nic is using 10.0.0.2 ... The SBS handles DHCP for the ... The SBS firewall not only keeps the wireless clients ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN vs. VLAN
    ... Yea I didn't want to get into semantic wars about what a "VLAN" is; ... listening in on the same network as the LAN router's DHCP daemon). ... The LAN Router between the IP Segments needs to be configured to forward ... DHCP Queries to the DHCP Server. ...
    (microsoft.public.win2000.networking)
  • Re: DHCP issues (solved!)
    ... with the internal LAN (connectivity was lost & I had to input fixed IP's to ... however on switching the policy off the LAN Clients suddenly have DHCP ... on the bottom it shows "Server Local Area Connection". ...
    (microsoft.public.windows.server.sbs)
  • [SLE] Re: SOLVED: [SLE] DHCP failure
    ... I'm running a 3-subnet LAN from a SUSE 9.3 box, and until yesterday I had a functioning LAN with a manually built dhcpd.conf file. ... Then I saved off that file and used YaST to poke around in the dhcp server section and the NIC section. ...
    (SuSE)