Ureader.com  
Microsoft software help and Community
   home   |   control panel login   |   archive   |  
 
2000
active_directory
advanced_server
applications
cmdprompt.admin
developer
dns
enable
fax
file_system
games
general
group_policy
hardware
msi
multimedia
netware
networking
new_user
printing
ras_routing
registry
security
setup
setup_deployment
setup_upgrade
termserv.apps
termserv.clients
windows_update
  
 
date: Wed, 9 Apr 2008 13:27:58 -0700 (PDT),    group: microsoft.public.win2000.networking        back       


VPN....May be Off Topic    
This may be off topic, but I couldn't find the right group for it...


I went to a site that had a VPN/Router device. It looked as if it was
in bridged ethernet mode with Bellsouth's Netopia device because the
DSL sign on information was in the VPN/Router. I'm used to only seeing
this information on the Netopia, and having the VPN or router device
pull an IP from the Netopia.

Ok well it seems that Bellsouth reset all the settings on the Netopia.
The only way to get the Internet to work was to tell the VPN/Router to
pull an IP automatically from the Netopia device.

That was fine until I tried to reestablish the VPN. I'm aware that
VPN's may have problems with NAT. I assumed that the original tech
setup the router in bridged ethernet so that it would "look" as if the
VPN/Router held the Netopia's public IP thereby facilitating the VPN
connection.

Instead I left it as is, and used IP Passthrough on the Netopia to the
VPN/Router. However, users are complaining that the connection to the
remote software shifts in speed. Could this be because of IP
passthrough? Or could it be just their cruddy DSL that keeps going out?
date: Wed, 9 Apr 2008 13:27:58 -0700 (PDT)   author:   nick

Re: VPN....May be Off Topic    
"nick"  wrote in message 
news:9b3831d0-c0b4-4078-97e4-3055f34bcc1f@a70g2000hsh.googlegroups.com...
> I went to a site that had a VPN/Router device. It looked as if it was
> in bridged ethernet mode with Bellsouth's Netopia device because

Probably true.

> Ok well it seems that Bellsouth reset all the settings on the Netopia.
> The only way to get the Internet to work was to tell the VPN/Router to
> pull an IP automatically from the Netopia device.
>
> That was fine until I tried to reestablish the VPN. I'm aware that
> VPN's may have problems with NAT. I assumed that the original tech
> setup the router in bridged ethernet so that it would "look" as if the
> VPN/Router held the Netopia's public IP thereby facilitating the VPN
> connection.

Yep. Except it didn't "look" like it had the Public IP#,...it actually did 
have the Public IP#

> Instead I left it as is, and used IP Passthrough on the Netopia to the
> VPN/Router. However, users are complaining that the connection to the
> remote software shifts in speed. Could this be because of IP
> passthrough?

That could be. The VPN Passthrough functionality has additonal "over-head" 
added to the mix that was not there before.

> Or could it be just their cruddy DSL that keeps going out?

Could be that too.  VPN will only match up with and run at the slower 
"upload" speed of the DSL.  The faster "download" speed is just going to 
waste and is unusable to the VPN.  But then it could also be *both* at the 
same time,...VPN Passthrough plus the crappy DSL.

Best solution is to either put the Netopia and the VPN/Router back exactly 
as it was before when it was working right,...or throw out the Netopia and 
replace it with a "straight" simple DSL Modem (no NAT, no router, no 
firewall) that is compatible with the Bell South DSL,...then configure the 
VPN/Router directly with the Public IP# Specs.   The VPN /Router may also 
need to be capable of using PPPoE,...that is the only logical reason that 
there ever would have been any "DSL Sign-On" information in the first place. 
There is no "sign-on" information for non-PPPoE DSL connections.  At this 
point the VPN/Router will "become" their "firewall",...so then you can call 
it their VPN/Firewall.

-- 
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
date: Wed, 9 Apr 2008 15:58:54 -0500   author:   Phillip Windell

Re: VPN....May be Off Topic    
On Apr 9, 3:58 pm, "Phillip Windell"  wrote:
> "nick"  wrote in message
>
> news:9b3831d0-c0b4-4078-97e4-3055f34bcc1f@a70g2000hsh.googlegroups.com...
>
> > I went to a site that had a VPN/Router device. It looked as if it was
> > in bridged ethernet mode with Bellsouth's Netopia device because
>
> Probably true.
>
> > Ok well it seems that Bellsouth reset all the settings on the Netopia.
> > The only way to get the Internet to work was to tell the VPN/Router to
> > pull an IP automatically from the Netopia device.
>
> > That was fine until I tried to reestablish the VPN. I'm aware that
> > VPN's may have problems with NAT. I assumed that the original tech
> > setup the router in bridged ethernet so that it would "look" as if the
> > VPN/Router held the Netopia's public IP thereby facilitating the VPN
> > connection.
>
> Yep. Except it didn't "look" like it had the Public IP#,...it actually did> have the Public IP#
>
> > Instead I left it as is, and used IP Passthrough on the Netopia to the
> > VPN/Router. However, users are complaining that the connection to the
> > remote software shifts in speed. Could this be because of IP
> > passthrough?
>
> That could be. The VPN Passthrough functionality has additonal "over-head"> added to the mix that was not there before.
>
> > Or could it be just their cruddy DSL that keeps going out?
>
> Could be that too.  VPN will only match up with and run at the slower
> "upload" speed of the DSL.  The faster "download" speed is just going to> waste and is unusable to the VPN.  But then it could also be *both* at the
> same time,...VPN Passthrough plus the crappy DSL.
>
> Best solution is to either put the Netopia and the VPN/Router back exactly> as it was before when it was working right,...or throw out the Netopia and> replace it with a "straight" simple DSL Modem (no NAT, no router, no
> firewall) that is compatible with the Bell South DSL,...then configure the> VPN/Router directly with the Public IP# Specs.   The VPN /Router may also
> need to be capable of using PPPoE,...that is the only logical reason that
> there ever would have been any "DSL Sign-On" information in the first place.
> There is no "sign-on" information for non-PPPoE DSL connections.  At this
> point the VPN/Router will "become" their "firewall",...so then you can call
> it their VPN/Firewall.
>
> --
> Phillip Windellwww.wandtv.com
>
> The views expressed, are my own and not those of my employer, or Microsoft> or anyone else associated with me, including my cats.
> -----------------------------------------------------

Good Lord, man! If I could only carry you around in my pocket! Thanks,
Phillip! You're the best!
date: Wed, 9 Apr 2008 15:28:37 -0700 (PDT)   author:   nick

Re: VPN....May be Off Topic    
On Apr 9, 5:28 pm, nick  wrote:
> On Apr 9, 3:58 pm, "Phillip Windell"  wrote:
>
>
>
>
>
> > "nick"  wrote in message
>
> >news:9b3831d0-c0b4-4078-97e4-3055f34bcc1f@a70g2000hsh.googlegroups.com...> > > I went to a site that had a VPN/Router device. It looked as if it was
> > > in bridged ethernet mode with Bellsouth's Netopia device because
>
> > Probably true.
>
> > > Ok well it seems that Bellsouth reset all the settings on the Netopia.> > > The only way to get the Internet to work was to tell the VPN/Router to> > > pull an IP automatically from the Netopia device.
>
> > > That was fine until I tried to reestablish the VPN. I'm aware that
> > > VPN's may have problems with NAT. I assumed that the original tech
> > > setup the router in bridged ethernet so that it would "look" as if the> > > VPN/Router held the Netopia's public IP thereby facilitating the VPN
> > > connection.
>
> > Yep. Except it didn't "look" like it had the Public IP#,...it actually did
> > have the Public IP#
>
> > > Instead I left it as is, and used IP Passthrough on the Netopia to the> > > VPN/Router. However, users are complaining that the connection to the
> > > remote software shifts in speed. Could this be because of IP
> > > passthrough?
>
> > That could be. The VPN Passthrough functionality has additonal "over-head"
> > added to the mix that was not there before.
>
> > > Or could it be just their cruddy DSL that keeps going out?
>
> > Could be that too.  VPN will only match up with and run at the slower
> > "upload" speed of the DSL.  The faster "download" speed is just going to
> > waste and is unusable to the VPN.  But then it could also be *both* at the
> > same time,...VPN Passthrough plus the crappy DSL.
>
> > Best solution is to either put the Netopia and the VPN/Router back exactly
> > as it was before when it was working right,...or throw out the Netopia and
> > replace it with a "straight" simple DSL Modem (no NAT, no router, no
> > firewall) that is compatible with the Bell South DSL,...then configure the
> > VPN/Router directly with the Public IP# Specs.   The VPN /Router may also
> > need to be capable of using PPPoE,...that is the only logical reason that
> > there ever would have been any "DSL Sign-On" information in the first place.
> > There is no "sign-on" information for non-PPPoE DSL connections.  At this
> > point the VPN/Router will "become" their "firewall",...so then you can call
> > it their VPN/Firewall.
>
> > --
> > Phillip Windellwww.wandtv.com
>
> > The views expressed, are my own and not those of my employer, or Microsoft,
> > or anyone else associated with me, including my cats.
> > -----------------------------------------------------
>
> Good Lord, man! If I could only carry you around in my pocket! Thanks,
> Phillip! You're the best!- Hide quoted text -
>
> - Show quoted text -

Phillip, I'm used to the device getting the public IP. What I mean is
that if I take a cable modem, or a dsl modem, and put it on the
network it will be assigned an IP. However, it may or may not work
depending on whether the device is registered/compatible. So in my
mind it would seem as if the VPN router was acting as the DSL modem
(Netopia). Therefore the DSL modem would not be needed.

If I take the DSL modem away then the connection would be non-
existent. That is, that the VPN/Router cannot act as a DSL device. So
technically the signal comes in and hits the DSL. The DSL is assigned
an IP. In IP Passthrough the TCP/IP packets get passed to the VPN/
Router so that it gets the IP address?

So without the DSL there would be no show. So technically, what is
different about bidged ethernet versus IP passthrough?

And what certified person would know this stuff? A CCNA? I don't
recall studying this stuff for MCSE.
date: Wed, 9 Apr 2008 15:38:28 -0700 (PDT)   author:   nick

Re: VPN....May be Off Topic    
"nick"  wrote in message 
news:0848e295-79e5-46c6-bdda-4c814090c5a4@a22g2000hsc.googlegroups.com...
On Apr 9, 5:28 pm, nick  wrote:
> On Apr 9, 3:58 pm, "Phillip Windell"  wrote:
> Good Lord, man! If I could only carry you around in my pocket! Thanks,
> Phillip! You're the best!- Hide quoted text -

It's rare that I get in anyone's pants over networking.  Asking the girls 
about their bandwidth hasn't done well as a pickup line.  :-)

> Phillip, I'm used to the device getting the public IP. What I mean is
> that if I take a cable modem, or a dsl modem, and put it on the
> network it will be assigned an IP. However, it may or may not work
> depending on whether the device is registered/compatible. So in my
> mind it would seem as if the VPN router was acting as the DSL modem
> (Netopia). Therefore the DSL modem would not be needed.

Couple things:

An DSL Modem has no IP#. It is simply a Layer 1&2 device.  It is effectively 
just barely more than an "adapter" between the phone line and the ethernet 
cable.

What are commonly called "routers" with this stuff are really just cheap 
"low-end" NAT based firewalls.  That is what the Netopia is. These are what 
have the IP numbers. Their are some "routers" out there where the Modem 
portion is built into the same piece of plastic but that is not the most 
common way it is done. Maybe your Netopia has the Modem built into the same 
device,...I don't know

If you configure the Netopia to operate in bridging mode then is *ceases* to 
be a "router" or a NAT firewall and acts pretty much the same as a Layer2 
Switch (which are effectively bridges).  This is typically done when the 
Modem portion is built into the same device so you can operate it as if it 
was just a straight Modem with all the other functionality "out of the way". 
Once done, the Public IP# can be placed on the VPN Device.

I see your choices this way.  Restore the Netopia back the configuration it 
originally had (whatever that was),...or get rid of it and use a straight 
simple DSL Modem and use the VPN Device as the "router" that has the Public 
IP# on the external side.

> And what certified person would know this stuff? A CCNA? I don't
> recall studying this stuff for MCSE.

MCSE is mostly Microsoft OS centric or at least centric to MS products but 
does cover general networking design.

CCNA focuses mostly on network theory, design, and routing.

Both cover the OSA Layers pretty well.  None of them cover "how DSL or 
CableTV Internet works".

I don't have an MCSE, don't expect I ever will.
I do have an old expired CCNA
I also don't have a High School Diploma.  I only finished my Freshman year 
and first semester of Sophmore year.  (Ok, ok,..so I did do the GED thing).


-- 
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
date: Thu, 10 Apr 2008 09:36:36 -0500   author:   Phillip Windell

Re: VPN....May be Off Topic    
"Phillip Windell"  wrote in message 
news:e$62rgxmIHA.3512@TK2MSFTNGP03.phx.gbl...
> Both cover the OSA Layers pretty well.  None of them cover "how DSL or 
> CableTV Internet works".

Had I made it through High School, I probably would have spelled OSI Layers 
correctly

:-)
date: Thu, 10 Apr 2008 10:55:53 -0500   author:   Phillip Windell

Re: VPN....May be Off Topic    
On Apr 10, 10:55 am, "Phillip Windell" 
wrote:
> "Phillip Windell"  wrote in message
>
> news:e$62rgxmIHA.3512@TK2MSFTNGP03.phx.gbl...
>
> > Both cover the OSA Layers pretty well.  None of them cover "how DSL or> > CableTV Internet works".
>
> Had I made it through High School, I probably would have spelled OSI Layers
> correctly
>
> :-)

You were probably the type in high school that got bored quickly. I
was like that.

Thanks for the explanations. They are excellent. Clear, cut and
practical. You're the man!

And don't worry about the pants thing...I have a wife and kid. I'm
sure you're a good looking guy and all that, but I wasn't trying to
put the moves on you. (And if I was I would've gone for a guy on these
forums that had his CCIE!)
date: Thu, 10 Apr 2008 09:58:29 -0700 (PDT)   author:   nick

Re: VPN....May be Off Topic    
"nick"  wrote in message 
news:58568059-7d81-4b4e-89f2-c80157d9b5bb@2g2000hsn.googlegroups.com...
On Apr 10, 10:55 am, "Phillip Windell" 
wrote:

> You were probably the type in high school that got bored quickly. I
> was like that.

Yep. Pretty much.

> Thanks for the explanations. They are excellent. Clear, cut and
> practical. You're the man!

You're welcome!

> sure you're a good looking guy and all that, but I wasn't trying to
> put the moves on you. (And if I was I would've gone for a guy on these
> forums that had his CCIE!)

Yea,..those CCIE's,...they always get all the action.

-- 
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
date: Thu, 10 Apr 2008 14:13:12 -0500   author:   Phillip Windell

Google
 
Web ureader.com


    COPYRIGHT 2007, YARDI TECHNOLOGY LIMITED, ALL RIGHT RESERVE  |   contact us