Windows XP Remote Access Solution

  • Thread starter Thread starter Sohil
  • Start date Start date
S

Sohil

I have a Windows XP Professional (SP1) behind a broadband
access point and LinkSys BEFSR41 Broadband
Router/Firewall. I have created an Incoming Connection
using VPN. I have also forwarded port 1723 to the private
IP of the WinXP Computer.

I am not able to connect. I get to "Verifying Username and
Password". When I run "netstat -an" from the remote
computer, it says that the connection is established.
After about 15 seconds, the connection disconnects and get
an Error 678: Computer not responding. I do, however, see
that data is coming in on port 1723 in the Firewall log.
On the outgoing log, data is coming back to the remote IP
on numerous ports 2036 or 4603 or some other port.

What am I doing wrong?
 
Have you enabled "PPTP Pass Through" in the Linksys?

--
Al Jarvi (MS-MVP Windows Networking)

Please post *ALL* questions and replies to the news group for the mutual benefit of all of us...
The MS MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no rights...
 
PPTP has been enabled. I see that 1723 is incoming in the
Linksys log.
-----Original Message-----
Have you enabled "PPTP Pass Through" in the Linksys?
Click to expand...
for the mutual benefit of all of us...
 
Sorry, I mean PPTP Passthrough is enabled. I have also
created an entry for PPTP in the Port Forwarding list to
go to the private IP of my XP machine.
 
Sohil said:
I have a Windows XP Professional (SP1) behind a broadband
access point and LinkSys BEFSR41 Broadband
Router/Firewall. I have created an Incoming Connection
using VPN. I have also forwarded port 1723 to the private
IP of the WinXP Computer.

I am not able to connect. I get to "Verifying Username and
Password". When I run "netstat -an" from the remote
computer, it says that the connection is established.
After about 15 seconds, the connection disconnects and get
an Error 678: Computer not responding. I do, however, see
that data is coming in on port 1723 in the Firewall log.
On the outgoing log, data is coming back to the remote IP
on numerous ports 2036 or 4603 or some other port.

What am I doing wrong?
Click to expand...


What firmware is on that Linksys Router? Is it a version 1, 2, or 3
router?

I know this setup works with the BEFSR41, but only with the v1 and v2
hardware, not the v3 (that also says Cisco on it). Also, does NOT work
with firmware after 1.44.2, Dec 13 2002.

Try 1.44.2, Dec 13 2002 on a v1 or v2 router. I haven't been able to
get get it to work on v3 at all.

It's been my experience, that the newer firmware hangs exactly where you
say, at "verifying username / password"

Ken
 
You're right. It hangs exactly where it says "Verifying
Username/Password" and then returns Error 721: Computer
not responding. I know the VPN server (XP) is working
properly because I have tested it out without the router
and it works.
 
Sorry, I mean PPTP Passthrough is enabled. I have also
created an entry for PPTP in the Port Forwarding list to
go to the private IP of my XP machine.

group
for the mutual benefit of all of us...
Click to expand...

I have been playing with my W2K PPTP VPN server behind Linksys BEFSR41
(v1 or v2) router for a week and went through all possible setup and
all new firmwares: 1.44.2; 1.45.6; 1.45.7. No luck at all.

I have tried 1723 forwarding, DMZ zone, Port trigging, PPTP
passthrough (it's default in the setting) no luck. Reading every
Linksys support document and search on the web, group for the answers
and tips.

Later I found out that PPTP passthrough is only for outgoing VPN
traffic, it does not work with Incoming PPTP traffic (Protocol GRE,
a.k.a. Protocol 47). This is why it stuck at “Verifying
Username and Password”. Even though I have open port 1723, and
the traffic does hit my server on port 1723, but GRE protocol does is
not passthrough from the router.

Check it up here:
http://www.extremetech.com/print_article/0,3998,a=109715,00.asp

Basically, I have given-up PPTP VPN server behind Linksys BEFSR41
router, unless they have newer firmware that support incoming PPTP
passthrough.

Some in the discussion group suggest following router works with
incoming PPTP traffic: Netgear WGR614 or D-Link 614+, but I have not
try yet. Just for your reference.

Regards,
Michael
 
Hmmm....I can't speak to the later firmware versions but the 1.42.7 release worked for incoming PPTP
VPN through my old Linksys BEFSR41 router. It was a Version 1 device. I had to enable "PPTP Pass
Through", disable "SPI" and forward TCP Port 1723 to the private LAN IP of my XP Pro PPTP VPN
server. Note I no longer use the router, I am currently on a 56K dial link to my ISP, so its
possible something is broken in later releases.

--
Al Jarvi (MS-MVP Windows Networking)

Please post *ALL* questions and replies to the news group for the mutual benefit of all of us...
The MS MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no rights...
 
Thanks,

This give me new hope, I just did the following testing on Linksys 4 port
router BEFSR41 with different version of firmware:

v1.42.7 4/2/2002 Inbound GRE OK with PPTP passthrough.
v1.43 9/4/2002 Inbound GRE OK with PPTP passthrough.
v1.43.3 11/15/2003 Inbound GRE OK with PPTP passthrough. Need port trigging
47~47 1723~1723
v1.44 11/21/2003 Inbound GRE OK with PPTP passthrough.
v1.44.2 12/13/2003 Inbound GRE OK with PPTP passthrough.

v1.45.6 6/24/2003 Inbound GRE NO, even with PPTP passthrough.
v1.45.7 7/31/2003 Inbound GRE NO, even with PPTP passthrough.

It seems firmware 1.42.7 to 1.42.2 allow incoming GRE traffic throught port
1723, since I do not have 2nd ISP to test now. I will try to test sometime
tomorrow.

Regards,
Michael


Sooner Al said:
Hmmm....I can't speak to the later firmware versions but the 1.42.7
Click to expand...
release worked for incoming PPTP
 
Michael,

Thanks for that information. You might want to check the DSL Reports Linksys forums for similar
problems. Linksys tech support folks hang out there sometimes and may have further comments
concerning this...

http://www.dslreports.com/forum/equip,16

--
Al Jarvi (MS-MVP Windows Networking)

Please post *ALL* questions and replies to the news group for the mutual benefit of all of us...
The MS MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no rights...
 
Sooner Al said:
Michael,

Thanks for that information. You might want to check the DSL Reports Linksys forums for similar
problems. Linksys tech support folks hang out there sometimes and may have further comments
concerning this...

http://www.dslreports.com/forum/equip,16

--
Al Jarvi (MS-MVP Windows Networking)

Please post *ALL* questions and replies to the news group for the mutual benefit of all of us...
The MS MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no rights...
Click to expand...

Thanks, Al,

It's working!!!
Following is the setup:

Linksys BEFSR41 with firmware 1.44.2, dated 12/13/2003,
(befsr-fw-1442.zip)
1. Forward 1723 TCP to VPN private IP, no need to use DMZ.
2. PPTP passthrough enable (default enable), no need for port
triggling.

I have used a NetZero dialup successfully dial-in my VPN server, and
everything works. So the problem is the Firmware. You are the man.

Those who need to downgrade Linksys BEFSR41 Router to 1.44.2 can come
here, file name befsr-fw-1442.zip.
ftp://ftp.linksys.com/pub/befsr41/

Regagrd,
Michael
 
Sohil said:
I have a Windows XP Professional (SP1) behind a broadband
access point and LinkSys BEFSR41 Broadband
Router/Firewall. I have created an Incoming Connection
using VPN. I have also forwarded port 1723 to the private
IP of the WinXP Computer.

I am not able to connect. I get to "Verifying Username and
Password". When I run "netstat -an" from the remote
computer, it says that the connection is established.
After about 15 seconds, the connection disconnects and get
an Error 678: Computer not responding. I do, however, see
that data is coming in on port 1723 in the Firewall log.
On the outgoing log, data is coming back to the remote IP
on numerous ports 2036 or 4603 or some other port.

What am I doing wrong?
Click to expand...

Hi, Sohil,

I got my VPN server working behind Linksys router according to the
post from Al and Ken, Thanks to Al and Ken. Here is what I did:

Linksys BEFSR41 with firmware 1.44.2, dated 12/13/2003.
1. Forward 1723 TCP to VPN private IP, no need to use DMZ.
2. PPTP passthrough enable (default enable), no need for port
triggling.

I have tested that GRE has successful hit my VPN server. Now there is
a catch, you can not use a VPN client behind Linksys Router to test
this function (what I did last night) which is not working in that
way.

I have used a NetZero dialup successfully dial-in my VPN server, and
everything works. So the problem is the Firmware. 1.44.2 works. The
newer firmware 1.45.6 and 1.45.7 does not work.

To downgrade Linksys BEFSR41 Router to 1.44.2:
ftp://ftp.linksys.com/pub/befsr41/
file name befsr-fw-1442.zip.

Good luck!

Michael
 
Back
Top