Re: Regarding auto configure option in AOL instant messanger.

From: Walter Roberson (roberson_at_ibd.nrc-cnrc.gc.ca)
Date: 06/28/05 

Date: Tue, 28 Jun 2005 19:16:07 +0000 (UTC)

In article <1119947714.917942.239890@g47g2000cwa.googlegroups.com>,
 <ravicse04@gmail.com> wrote:
:1) Branch office : NETGEAR FVS312 prosafe model
:2) Same in the HQ.
:3) HQ intiated the connection.
:4) branch office doesn't have static ip address and HQ has the static
:office address.

That could lead to problems.

As long as the VPN is connected, then the VPN rules can be written
in terms of internal IP subnets [I think -- though I don't know the
FVS318 well], but if the VPN is not connected, then it is difficult
to get the HQ firewall to connect to the dynamic IP without
reconfiguring the HQ firewall to reflect the current value of the
dynamic IP. If I recall correctly something that I skimmed over this
morning, then one approach would be to subscribe to one of the
dynamic DNS servers (it might have to be dyndns specifically, not sure)
and then the HQ FVS318 can do a DNS lookup of the current registered
IP and attempt to start the IPSec connection to there.

When one side has a dynamic IP and the other side does not, it is
very often much simpler to have the side with the dynamic IP initiate
the connection rather than the side with the static IP. 

-- 
  "Who Leads?" / "The men who must... driven men, compelled men."
  "Freak men."
  "You're all freaks, sir. But you always have been freaks.
   Life is a freak. That's its hope and glory." -- Alfred Bester, TSMD

Relevant Pages

  • Re: Cannot make connection with RAS server behind firewall.
    ... I have two servers behind my firewall, ... connect using a PPTP connection. ... the two branch offices are connected via PPTP based site to site VPN ... The branch office has two VPNs connected to the main office. ...
    (microsoft.public.windows.server.general)
  • Re: Exchange 2003 design for 2 sites
    ... One branch office with 5 users. ... Currently we have one Exchange 2003 server located at our main office. ... Controller and Exchange server) at the branch office on which we will have ... When the Internet connection at our main office ...
    (microsoft.public.exchange.design)
  • Re: Regarding auto configure option in AOL instant messanger.
    ... Regarding "NETGEAR FVS318 prosafe doesn't support" I checked my NETGEAR ... prosafe setting then I found that there is one option is given in LAN ... Regarding "single branch office invoved" actually in vedio confrencing ... > IP and attempt to start the IPSec connection to there. ...
    (comp.security.firewalls)
  • 2 default gateways for fault tolerance
    ... Setting up a branch office on a separate subnet from the main office, ... Users will use Remote Desktop to connect to a Terminal ... In case the T1 goes down, they want to be able to use a DSL connection at ... the 2nd pointing to the SOHO router, ...
    (microsoft.public.win2000.networking)
  • Re: vpn connection communication
    ... If so the VPN PC doesn't know how to route to the remote site. ... I am having a problem with a branch office deployment scenario. ... Branch office server ... Is it possible to allow a client who has a VPN connection to the main ...
    (microsoft.public.windows.server.sbs)
Loading