Hmmm....Have you looked at this FAQ concerning VPN over the Direcway system?
http://www.copperhead.cc/faq.html
"Generally speaking, VPN will not work over 2-way residential service no mater who the dealer is.
This is because the residential service offering does not come with a option for a Live IP. The IP
address that is used is placed behind a Cisco Pix Firewall that does NAT (Network Address
Translation). Most (if not all) VPN solutions require a live IP to be assigned to the host. When the
VPN (ipsec or pptp) packets pass thru the NAT they are modified and as such are discard by the VPN
server because they are modified. Now wait a minute you say. "Early on when the service just started
I could do VPN". Some NAT's (Cisco pix) have addressed this problem and allow a VPN connection to
traverse across the NAT with the following limitations.
1. Only one VPN connection per VPN server.( I.E first person connects to a vpn server at 207.0.0.1.
The second person tries to connect to the same vpn server at 207.0.0.1 would fail.
2.The NAT must not be doing PAT (Port Address Translation). This happens when the NAT has more
clients using it that real IP address assigned to it.
When the 2-Way service was new the NAT had enough IP's so it didn't do PAT. Now that many people are
using the service now it is mostly doing PAT. And a such VPN will not work.
Hughes (and I'll assume powered by) has the option for a Live IP on their Business accounts. To do
this they have Gateways that are all Live IP's. Having this will let you do VPN but I will caution
you that the performance of VPN over 2-way is low. This is because all of the optimization that
Hughes does to minimize satellite latency is lost . I find that VPN over 2-way is about the same as
128 ISDN on receive and at best 33.6-28.8 dial up on return. As well not all VPN clients will
install on a system with NAV as some modify the network adapter that it is bound to. Doing this
breaks the Satellite USB NIC.
The following is a list of VPN client that I know work over 2-way Live IP.
Microsoft's PPTP
Cisco
Nortel's Extranet client
Indus River
Borderware Secure
PGP
Checkpoint does not work (use PGP as client for Checkpoint server)
The exception to the above is if the network you're trying to connect to supports "Nat Traversal".
(Check with your network administrator to find out if this is supported.) Still, even if it does
work the connection will be terribly slow due to satellite latency. Even if it does work for you,
you might decide using a standard dial-up modem is faster for VPN."
You also may want to look at this thread from the DSL Reports Satellite Broadband ISP forum...
http://www.dslreports.com/forum/remark,7733254~root=sat~mode=flat
--
Al
Please post *ALL* questions and replies to the news group for the mutual
benefit of all of us...Unsolicited personal emails are *NOT* answered.
