[isapros] Re: Linksys VPN
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: <isapros@xxxxxxxxxxxxx>
- Date: Thu, 7 Dec 2006 17:48:14 -0600
Then there's something in the path between the two devices that is blocking the
IKE on UDP 500.
Thomas W Shinder, M.D.
Site: www.isaserver.org
Blog: http://blogs.isaserver.org/shinder/
Book: http://tinyurl.com/3xqb7
MVP -- Microsoft Firewalls (ISA)
> -----Original Message-----
> From: isapros-bounce@xxxxxxxxxxxxx
> [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of Amy Babinchak
> Sent: Thursday, December 07, 2006 3:15 PM
> To: isapros@xxxxxxxxxxxxx
> Subject: [isapros] Re: Linksys VPN
>
> The Linksys log files shows a bunch of stuff happening but no
> UDP 500 on the ISA end of things.
>
> Amy Babinchak
>
> Harbor Computer Services
> (248) 546-6056 office
> (248) 890-1794 mobile
>
> http://isainsbs.blogspot.com
> http://www.harborcomputerservices.net
>
>
>
>
>
>
> -----Original Message-----
> From: isapros-bounce@xxxxxxxxxxxxx
> [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of Thomas W Shinder
> Sent: Thursday, December 07, 2006 3:37 PM
> To: isapros@xxxxxxxxxxxxx
> Subject: [isapros] Re: Linksys VPN
>
> The ISA Firewall service log file will show the incoming IKE
> connections on UDP 500 if any are coming in. If none are
> coming in, then something between the ISA Firewall and the
> linksys is blocking them, or the Linksys isn't even dialing.
>
> Thomas W Shinder, M.D.
> Site: www.isaserver.org
> Blog: http://blogs.isaserver.org/shinder/
> Book: http://tinyurl.com/3xqb7
> MVP -- Microsoft Firewalls (ISA)
>
>
>
> > -----Original Message-----
> > From: isapros-bounce@xxxxxxxxxxxxx
> > [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of Amy Babinchak
> > Sent: Thursday, December 07, 2006 2:29 PM
> > To: isapros@xxxxxxxxxxxxx
> > Subject: [isapros] Re: Linksys VPN
> >
> > That is a nice article. The Linksys support person verified
> > that I have all the setting correct on the Linksys side. I
> > wouldn't let her into the ISA server. :) I think I'm good
> > there as well. The only thing I can't remember off the top of
> > my head is whether the IP address of the internal network
> > includes .255. I'm thinking it should for DHCP purposes but
> > I'll take a look just in case.
> >
> > The puzzling part for me that is that I can't see any packets
> > in the ISA log coming from the remote site. Is there a better
> > log someplace that exposes the VPN Tunnel handshake? In
> RRAS perhaps?
> >
> > Amy Babinchak
> >
> > Harbor Computer Services
> > (248) 546-6056 office
> > (248) 890-1794 mobile
> >
> > http://isainsbs.blogspot.com
> > http://www.harborcomputerservices.net
> >
> >
> >
> >
> >
> >
> > -----Original Message-----
> > From: isapros-bounce@xxxxxxxxxxxxx
> > [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of Steve Moffat
> > Sent: Thursday, December 07, 2006 2:01 PM
> > To: isapros@xxxxxxxxxxxxx
> > Subject: [isapros] Re: Linksys VPN
> >
> > I've found this helpful with Linksys routers. (Even tho' it's
> > for Linksys.)
> >
> > S
> >
> > http://www.isaserver.org/articles/2004isadlink.html
> >
> >
> >
> > -----Original Message-----
> > From: isapros-bounce@xxxxxxxxxxxxx
> > [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of Amy Babinchak
> > Sent: Thursday, December 07, 2006 2:35 PM
> > To: isapros@xxxxxxxxxxxxx
> > Subject: [isapros] Linksys VPN
> >
> > Have a client with a Linksys rv042 VPN router in Chicago and
> > an ISA 2004 in Florida. We're trying to setup a VPN tunnel
> > between the 2. No packets are arriving from Chicago the ISA
> > log shows no IKE client connection attempts. I can't find
> > anything blocking them from getting out of Chicago, the
> > built-in firewall is off and I can ping the VPN router.
> > Already updated the firmware too. The router has this error
> > in its logs: Received information payload type
> > invalid_id_information. I called Linksys they said try a more
> > compatible VPN router in Florida. I'd prefer to try a more
> > compatible VPN router in Chicago if that is the only solution.
> >
> > So if this Linksys model can't be made to work with ISA,
> > which ones do work? Or do you have any other suggestions for
> > getting this one to work?
> >
> > Amy Babinchak
> >
> > Harbor Computer Services
> > (248) 546-6056 office
> > (248) 890-1794 mobile
> >
> > http://isainsbs.blogspot.com
> > http://www.harborcomputerservices.net
> >
> >
> >
> >
> >
> >
> >
> >
>
>
>
>
Other related posts:
