Enhancing Broadband
| All Products | Modems | Routers | Business | Wireless | Forum | News | Contact Us |
 |
 |
 |
 |
All Products Modems Routers ST PRO ST PRO Firewall ST 510r3 ST 510v4 ST 530 Business Wireless Forum News Press Contact Us |
 |
 |
 |
 |
IPSEC VPN Pinholes Setup instructions
Firmware Release R4.0 / R4.2
Overview
When trying to run IPSEC from the LAN side of a ST510, pinholes, or port forwards, need to be created. This enables the incoming data for IPSec to pass through the firewall and terminate on the computer running the IPSec client/server application.
Problem
After setting up an IPSec tunnel, client computers cannot connect.
Solution
We will need to create port forwards through the router’s firewall. This document will guide you through setting up NAPT entries in the router to forward the IPSec packets to the IPSec client/server.
To do this,
1. Browse to the router and go into the ‘advanced’ menu and select NAPT
2. Click ‘new’ to create a new entry
3. Fill in the appropriate details, with the ‘Inside IP’ as the computer in the LAN you want the IPSec to be forwarded to and the port as ‘500’
4. Click the ‘Apply’ button
5. Click ‘Save All’ to save the changes
6. Open a command prompt by clicking ‘start’ selecting ‘Run’ and type ‘command’ into the ‘open:’ box. Then click ‘OK’
7. Type ‘telnet {The IP address of your router}’ e.g. telnet 10.0.0.138
8. Enter your router’s security username and password.
9. At the prompt, type ‘nat’.
10. type ‘create’
11. Fill out the details as below:
-
Protocol = 50
-
Inside IP = as the computer in the LAN you want the IPSec to be forwarded to.
-
Inside addr = {blank}
-
Outside addr = 0
-
Outside port = {blank}
-
Foreign addr = {blank}
-
Foreign port - {blank}
12. type ‘saveall’
13. type ‘exit’
Your VPN packets will now be
forward to the IP address you specified in steps 3 and 11.