VPN capable ADSL Modems

  • Thread starter Thread starter Tim
  • Start date Start date
T

Tim

Hi All, I am thinking about getting a new ADSL Modem. I would like to VPN in
(and out) to my server. Does anyone have any tips on what to look for? Many
such modems state support for VPN - yet I have read articles saying there
are problems with NAT and VPN.

Thanks - Tim
 
I think you mean router/firewall - not the modem itself. Most, if not all, will
allow vpn traffic to pass though you may need to enable pptp or ipsec
"passthrough" in the router configuration. L2tp will not work with NAT/PAT due
to the way packet headers or modified. There is NAT-T that will work. However
most users will find pptp easier to set up, does not have problems with NAT, and
does not require machine certificates like W2K requires for l2tp due to it using
machine authentication in addition to user authentication. Be sure to use strong
password with pptp and if possible configure your router to accept pptp
connections only from your public ip on the client end. I have used D-link,
Netgear, and Linksys routers without a problem passing vpn traffic. I like the
Netgear ProSafe line which are true SPI firewall routers. --- Steve

http://www.netgear.com/products/prod_details.php?prodID=140&view=
http://support.microsoft.com/default.aspx?scid=kb;en-us;818043 --- info on
NAT-T
 
Thanks.

Steven Umbach said:
I think you mean router/firewall - not the modem itself. Most, if not all, will
allow vpn traffic to pass though you may need to enable pptp or ipsec
"passthrough" in the router configuration. L2tp will not work with NAT/PAT due
to the way packet headers or modified. There is NAT-T that will work. However
most users will find pptp easier to set up, does not have problems with NAT, and
does not require machine certificates like W2K requires for l2tp due to it using
machine authentication in addition to user authentication. Be sure to use strong
password with pptp and if possible configure your router to accept pptp
connections only from your public ip on the client end. I have used D-link,
Netgear, and Linksys routers without a problem passing vpn traffic. I like the
Netgear ProSafe line which are true SPI firewall routers. --- Steve

http://www.netgear.com/products/prod_details.php?prodID=140&view=
http://support.microsoft.com/default.aspx?scid=kb;en-us;818043 --- info on
NAT-T
Click to expand...
 
Have a look at the Dtaytek Vigor range..
Built-in ADSL modem, optional wireless, full suite of VPN including ipsec &
lan-to-lan, firewall, switch and optional VOIP.. Used them extensively with
excelent results.

www.seg.co.uk (in the UK)
www.draytek.com

David
 
Back
Top