L2TP + Nat device

[tophre]

Per Microsoft: The only supported and recommended scenario is when the
Server is not located behind a NAT device

Does anyone know a way around this? We are trying to establish a VPN
connection using L2TP, I have opened the ports on the firewall but the
connection just isn't happening; PPTP no problem

Chris

 

[Robert L [MS-MVP]]

which ports do you open?

Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
Per Microsoft: The only supported and recommended scenario is when the
Server is not located behind a NAT device

Does anyone know a way around this? We are trying to establish a VPN
connection using L2TP, I have opened the ports on the firewall but the
connection just isn't happening; PPTP no problem

Chris

 

[tophre]

Robert,
The ports are configured correctly, my real question is that MSoft says it's not recommended to try this behind a NAT device, however our corp policy insists that our DC stay behind the firewall; is there a way to do it? The ports open are UDP 500,UDP 4500, and ESP 50.
Chris
which ports do you open?

Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
Per Microsoft: The only supported and recommended scenario is when the
Server is not located behind a NAT device

Does anyone know a way around this? We are trying to establish a VPN
connection using L2TP, I have opened the ports on the firewall but the
connection just isn't happening; PPTP no problem

Chris

 

[Robert L [MS-MVP]]

I am not aware of this issue. We use L2TP behind Cisco Firewall PIX. However, 1. L2TP needs UDP Port 1701. 2. It is not recommend to enable VPN on DC.

Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
Robert,
The ports are configured correctly, my real question is that MSoft says it's not recommended to try this behind a NAT device, however our corp policy insists that our DC stay behind the firewall; is there a way to do it? The ports open are UDP 500,UDP 4500, and ESP 50.
Chris
which ports do you open?

Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
Per Microsoft: The only supported and recommended scenario is when the
Server is not located behind a NAT device

Does anyone know a way around this? We are trying to establish a VPN
connection using L2TP, I have opened the ports on the firewall but the
connection just isn't happening; PPTP no problem

Chris