|
Configuring a free VPN solution in your home |
|
|
|
|
Written by CCIE9277
|
|
Thursday, 23 March 2006 |
|
Page 2 of 3 Section 2: Configuring the router for VPN passthru. - Step 1: First we need to enable PPTP pass through on a screen similar to the one in the image below in Figure 2-A.
Figure 2-A
 NOTE: I'm not going into a lot of detail here because there are so many different routers and so many different versions of firmware. This specific explaination is for a Linksys model router, not all Linksys model routers will look the same depending on the version of firmware as well. PPTP uses TCP over port 1723, this type of VPN also requires GRE (Generic Routing Encapsulation) for the data stream. The NAT engine in the router must have support for GRE in order for this to function properly but most newer routers won't have a problem with this. - Step 2: Now we need to enable PPTP port fowarding on a screen similar to the one in the image below in Figure 2-B.
Figure 2-B
 | NOTE: The IP address needs to be the address of the PC that you configured the VPN server on. Its a good idea to have statically defined addresses on devices that perform specific functions like a VPN server. - Step 3 (Optional): If you are running windows firewall on the VPN server interface you will need to allow PPTP (TCP Port 1723) to pass through. You can do this by going to "Add Port" under the "Exceptions" tab in the Windows Firewall configuration similar to the screen in Figure 3-B below. You can name it PPTP, put in 1723 in the "Port Number" field and select the TCP radio button and then select OK. You should see PPTP checked in the Programs and Services list afterwards.
|
|
Figure 3-B
 NOTE: You will need to make sure that "Don't allow exceptions" is NOT checked on the General tab of the Windows Firewall configuration screen.
|
