Question about NetGear WGT624 Wireless Router

1 Answer

Configure VPN on Netgear WGT624

Guys....

Can you help me to explain how configure netgear as VPN Router behind my server 2003......

I have 1 nic with iP public 202.148.20.42 , i want access from client to my server with vpn ......

Pls help me how to configure my netgear.....

Thks

Posted by on

  • david Dec 14, 2007

    Based on the following I have joined this issue to track the solution.



    Review this article

    VPN vs VPN Passthru
    This appears to be a clear VPN and not VPN PassThru issue, if I read
    this correctly.



    Here is a reference to your router's user guide, if you need it.

    http://kbserver.netgear.com/inquira/defa..." target="_blank" rel="nofollow" >User Guide



    Depending on what you mean by IP Public

    if this is a dymanic IP address you probably need to

    understand Dynamic DNS to provide a URL (name) for your

    site

    if this is a static IP address you need to be able to establish

    a DNS presence for a domain name to access your site

    or have the users reference your server by the ISP's assigned IP
    address



    Page 6-7 indicates that Disabling SPI Firewall might be necessary



    Page 13 indicates that triggering



    VPN authentication of unique users using WIRELESS ACCESS ONLY is
    possible in the enterprise section with a radius router used as part of
    WPA enterprise.



    Mass authentication of WIRELESS users without unique identification of
    each user can be achieved using the SOHO WPA TKIP option. (Windows
    logons can provide for the identification of the unique identity of
    each user in this scenario.)

    Reviewing later portions of the solution I anticipate the SOHO TKIP solution to this may be adequate for the wireless.



    Nothing indicates the ability to secure communications by wired
    connections which should be addressed before anything else is done. It
    would be nice if the solution to this issue worked identically for wired and wireless communications. Meaning theoretically in my mind
    the "VPN client service" on your users computers should result in
    communication to your router that is port forwarded (?) to "VPN
    Authentication Service". I am interested in the
    opinion of a person that will ultimately solve this as to whether the VPN
    Authentication Service can run safely on the Windows Server or whether
    it should be performed in a separate unit.



    Then port forwarding from the "VPN Authentication Service" only the requests from properly authenticated sources to the Windows server.

    In addition if the "VPN Authentication Service" is a separate unit from the Windows Server what would be required to support single signon for users so they would not have to authenticate to both the "VPN Authentication Service" and the Windows Server in two separate actions?

×

Ad

1 Answer

  • Level 2:

    An expert who has achieved level 2 by getting 100 points

    MVP:

    An expert that got 5 achievements.

    Scholar:

    An expert who has written 20 answers of more than 400 characters.

    Hot-Shot:

    An expert who has answered 20 questions.

  • Expert
  • 160 Answers
Ad

1 Suggested Answer

6ya6ya
  • 2 Answers

SOURCE: I have freestanding Series 8 dishwasher. Lately during the filling cycle water hammer is occurring. How can this be resolved

Hi there,
Save hours of searching online or wasting money on unnecessary repairs by talking to a 6YA Expert who can help you resolve this issue over the phone in a minute or two.

Best thing about this new service is that you are never placed on hold and get to talk to real repairmen in the US.

Here's a link to this great service

Good luck!

Posted on Jan 02, 2017

Ad

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

Tip

VPN in Microsoft Server 2003


The full form of VPN is Virtual Private Network. VPN gives extremely secure connections between private networks linked through the Internet. It allows remote computers to act as though they were on the same secure, local network. Allows you to be at home and access your company's computers in the same way as if you were sitting at work.

Almost impossible for someone to tap or interfere with data in the VPN tunnel. If you have VPN client software on a laptop, you can connect to your company from anywhere in the world. VPN goes between a computer and a network (client-to-server), or a LAN and a network using two routers (server-to-server). Each end of the connection is a VPN "endpoint", the connection between them is a "VPN tunnel".

When one end is a client, it means that computer is running VPN client software. You can use a virtual private network (VPN) to connect components to one network by using another network. VPN do this by "tunneling" through the Internet or another public network. With a VPN, connections across the public network can transfer data by using the routing infrastructure of the Internet, but to the user, the data seems to travel over a dedicated private link.

A VPN gives you the benefit of a dial-up connection to a dial-up server, plus the flexibility of an Internet connection. Using an Internet connection you can connect to resources all over the world. If you have a high-speed Internet connection at your computer and at your office, you can communicate with your office at full Internet speed. This is much faster than any dial-up connection that uses an analog modem.

VPNs use authenticated links to make sure that only authorized users can connect to your network, and they use encryption to make sure that others cannot intercept and cannot use data over the Internet. A Tunneling Protocol is a technology that helps make the transfer of information over the Internet more secure from one computer to another.

VPN technology also permits a corporation to connect to its branch offices or to other companies over a public network, such as the Internet, while helping to maintain secure communications. The VPN connection across the Internet logically operates as a dedicated wide area network (WAN) link.

VPN in Windows 2003 Server: You need a high speed Internet connection to configure and run VPN server. Two individual lan card must be present in a single system where you want to configure a VPN Server. The lan cards should ping each other. Also need a User which's Dial in allow access should be enable. Microsoft 2003 server two tunnelling protocols for a secure VPN connection, one is PPTP (Point-to-Point Tunnelling Protocol) which Provides data encryption using Microsoft Point-to-Point Encryption. The other is L2TP (Layer Two Tunnelling Protocol) which Provides data encryption, authentication, and integrity using IPSec.

Steps to create VPN Server in 2003 Server: At first I go to Start and point to Administrative Tools, then click Routing and Remote Access. Then I click the server icon that matches the local server name in the left panel of the console. If the Routing and Remote Access service was previously turn on, you may want to reconfigure the server.

To reconfigure the server Right-click the server object, and then click Disable Routing and Remote Access. Click yes to continue when you are prompted with an informational message. Then Right-click the server icon and then click configure and Enable Routing and Remote Access to start the Routing and Remote Access Server Setup Wizard. After that click Remote access (dial-up or VPN) to turn on remote computers to dial in or connect to this network through the Internet. Then I have Click to select VPN. In the VPN Connection window I click the network interface (Lan) which is connected to the Internet and go the IP Address Assignment window, then I click Automatically because there was present a DHCP server in network. However, if DHCP is not available, you must specify a range of static addresses.

If you use from a specified range of addresses, open the Address Range Assignment dialog box and Type the first IP address in the range of addresses that you want to use in the Start IP address box. Type the last IP address in the range in the End IP address box. Windows calculates the number of addresses automatically. After that I have accept the default setting of No, use Routing and Remote Access to authenticate connection request and finally Click Finish to turn on the Routing and Remote Access service and to configure the server as a Remote Access server.
For the remote access server to forward traffic properly inside your network, you must configure it as a router with either static routes or routing protocols, so that all of the locations in the intranet are reachable from the remote access server. It also need for security purpose.<SPAN style="LINE-HEIGHT: 115%; FONT-FAMILY: 'Verdana','sans-serif

on Mar 22, 2011 | Microsoft Windows Server 2003 Enterprise...

1 Answer

Vpn site to site


you need to create an IPSec tunnel between the router and windows server 2003 (run secpol.msc). From the dlink router, you need to set the IP address of the VoIP gateway as part of the LAN that is included on the VPN tunnel. Since it is the server 2003 that has a static IP, you need to initiate the connection from the Dlink router.

Jun 23, 2009 | D-Link Express EtherNetwork DI-LB604...

1 Answer

I have a netgear rangemax won824 v2 I can connect to it fine, but I cannot connect to a works server after vpn connection successful. can someone help


VPN Passthrough Configuration

1. Please assign an IP address to your computer using the IP Address Reservation.

a. Please open any web browser like Internet Explorer or Netscape Navigator.
b. Connect to the router by typing http://routerlogin.com/basicsetting.htm or http://192.168.1.1 in the address field and click Enter or Return key.
c. A window will prompt for a user name and password. The default username is "admin" and the default password is "password".

Note: If it does not take password as the password, you might have changed it when you have run the NETGEAR Setup CD so please try other passwords. If you cannot remember the password, you need to reset the router and run the Setup CD to reconfigure it.

d. On the setup page, please click LAN IP Setup under Advanced tab.
e. Click Add under Address Reservation then you will be brought up to a new window.
f. On the Address Reservation window, please select the radio button of the computer you wish to add.
g. If the computer you want is not on the list; click the Refresh button to update the table.
h. If the computer is still not on the Address Reservation Table; please enter the IP Address, MAC Address, and Device Name of the computer you wish to add.
i. Please click on the Add button when finished.

2. On the Set Up page of the router, select on Port Forwarding/Port Triggering under Advanced tab.
3. Click Add Custom Service and type VPN on the Service Name box.
4. Set the Service Type to TCP/UDP and input the VPN port numbers under the Start and End Port field.
5. Type in the last digit of the IP address of your computer. Then, click the Apply button.

Example: The IP address of the computer trying to establish the VPN connection is 192.168.1.2.

Service Name Start Port End Port Server IP address
VPN1 47 47 192.168.1.2
VPN2 50 51 192.168.1.2
VPN3 500 500 192.168.1.2
VPN4 1723 1723 192.168.1.2

Jun 07, 2009 | NetGear RangeMax WPN824 Router

1 Answer

How to routing router static ip address and local


Use the Sonicwall configuration wizard..

Please find below is to configure what ever you want.

Setup Wizard - This wizard will help you quickly configure the SonicWALL to secure your Internet connection. Once completed, you can use the SonicWALL Web Management Interface for additional configuration.

Registration & License Wizard - This wizard will help you register you and your firewall with mysonicwall.com and obtain licenses for additional Security Services features.

PortShield Interface Wizard - Segment and configure the integrated managed LAN switch of the SonicWALL.

Public Server Wizard - Quickly configure your SonicWALL to provide public access to an internal server.

VPN Wizard - Create a new site-to-site VPN Policy or configure the WAN GroupVPN to accept connections from the SonicWALL Global VPN Client
Thanks
..

Apr 22, 2009 | SonicWALL TZ170 (01-ssc-5740) Firewall

1 Answer

How do I configure site to site VPN on a Netgear Router?


Well the VPN connection would have to be setup on your PC at home or where ever you are... VPN will pass-through if your router allows that... Also the VPN connection would have to be accepted by the remote server or computer that you are trying to VPN into

Apr 02, 2009 | NetGear RangeMax WPN824 Wireless Router...

1 Answer

Linksys RVS4000 Networking question


it seem that your best bet would be to look into remote access programs that can be found easily on google.com. I would suggest browsing some of the options you find on there.

hint: if your looking for a no cost solution, simply add the keyword freeware in the google search bar

Mar 10, 2009 | Linksys RVS4000 Router

2 Answers

Remote Desktop via VPN problem


Make sure that the Active Directory setting for the User you are using to RDP with (LDAP FQN) has the remote access option turned on.
http://www.windowsecurity.com/articles/Securing_Remote_Access_Connections.html

Also make sure that the PC's you want to access have static IP addresses. Not sure if that was mentioned.

Feb 18, 2009 | Dell PowerEdge 2600 Server

1 Answer

RCA Modem DCM315R


Just a bit of explanation. E0 interface is for inside network (LAN interface). E1 is for outside (ISP or WAN physical interface). Dialer1 is for PPPoE (the "actual"/logical WAN interface). The 1.0.0.13 is ISP provided static IP address for the use of the server. This configuration example is for running FTP server, which uses the standard TCP port 20 and 21.

The LAN uses 10.10.10.0 network with 255.255.255.0 subnet for both servers and workstations. All servers within the LAN use static IP address. The router is configured as DHCP server to give out IP info (IP addresses, subnet mask, DNS) to workstations that are configured as DHCP client.

Basically I suggest that you deploy NAT (Network Address Translation) and PAT (Port Address Translation) to setup your own servers behind Cisco router. The NAT is used to translate the ISP's given static IP address to your local IP address. The PAT is used to translate TCP ports (the port 20 and 21) between the two IP addresses.

When using NAT/PAT, keep in mind that the Internet-accessible servers are seen from the Internet as their NAT/PAT-ed IP address (the Public IP address) and not the local IP address (not the Private IP address). This understanding is very important when you or someone need to test connectivity to the server and/or when you need to create filter (access list or ACL for short) to allow only certain incoming traffic from the Internet and block others.

Side Note:
For more info on NAT/PAT concept, check out the following FAQ
»Cisco Forum FAQ »NAT and PAT; Introduction and Implementations

Instruments used in this illustration are pretty much standard for running your own servers. Please note that IP addresses, username, and password are changed. However, you could always modify the configuration to suit your situation.

This sample configuration assumes that you have a block of IP from ISP. There is a dedicated Public IP address for the router WAN interface (the Dialer1 interface) and another dedicated Public IP address for the server PAT IP address. If you only have a single Public IP address for both router WAN interface and server PAT IP address, there are several ways to configure the router.

One way is to use the same command as shown in sample configuration.

view plaincopy to clipboardprint?
  1. ip nat source static tcp 10.10.10.2 21 1.1.1.14 21 extendable
ip nat source static tcp 10.10.10.2 21 1.1.1.14 21 extendable
This one configuration way is suitable when you have static IP address from your ISP and you know exactly what the IP address is. In this case you have the 1.1.1.14 single static IP address for both the WAN interface and Public server IP address.

When you are unsure which IP address you receive from the ISP, or when your Public IP address keep changing; then another way to configure the static PAT is following

view plaincopy to clipboardprint?
  1. ip nat source static tcp 10.10.10.2 21 interface Dialer1 21 extendable
ip nat source static tcp 10.10.10.2 21 interface Dialer1 21 extendable
With situation of dynamic IP address, at some point you still need to know the exact Public IP address you receive from your ISP for server connection testing and production time. To find out, you can issue show ip interface brief command on the router. You will then see the associated WAN interface Public IP address.

Feb 25, 2008 | RCA Cable Modem DCM315R (11603540)

1 Answer

Nortel Contivity VPN client?


Nortel Contivity will work with the your D-Link router, however its functionality depends on the authentication type (AH will not work), NAT compatibilty mode, and disabling keep alives on the server. Contact your Network Administrator to find out how your VPN is configured. Step 1 Verify that you are using the latest version of firmware on your router. Step 2 Login to the Web Management for your router by entering its IP address (192.168.0.1) in your web browser. The default username is admin, and the password is blank. Step 3 Click the Advanced Tab to access the Virtual Server Settings. There is a list of pre-defined Virtual Server Rules towards the bottom of the page. Find the IPSec Rule. Click the pen and paper icon to edit its settings. Enable the rule, enter the IP address of the computer attempting to connect to the VPN in the Private IP field, then Apply the changes. Step 4 Create a new Virtual Server entry. Name the Virtual Server, "NortelVPN". Enter the IP address of the computer attempting to connect to the VPN in the Private IP field. For the Protocol Type, select Both. Enter 9550 for both the Public and Private Ports. Set the Schedule to always, then Apply the settings. Step 5 Access the Tools Page, then click the Misc button. Disable IPSec Pass-through, then click Apply. If the VPN Server is properly configured to work with clients behind NAT routers you should be able to connect to the VPN.

Feb 16, 2006 | D-Link Express EtherNetwork DI-604 Router

Not finding what you are looking for?
NetGear WGT624 Wireless Router Logo

Related Topics:

1,738 people viewed this question

Ask a Question

Usually answered in minutes!

Top NetGear Computers & Internet Experts

Prashant M
Prashant M

Level 3 Expert

2268 Answers

Les Dickinson
Les Dickinson

Level 3 Expert

18426 Answers

Michael Galve
Michael Galve

Level 3 Expert

1269 Answers

Are you a NetGear Computer and Internet Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...