Topic: Howto Open UDP 500 for VPN

[Tim Jabaut]

I would like to know Howto Open UDP 500 for VPN access. I am using a SonicWall VPN client to connect to a clients office. I am not able to get a connection up and running. If I bypass the e-Smith box (SME v5) then I can connect no problem.

Any ideas???

I am not using IKE on this connection, but rather a manual key, so I am not even sure if it is UDP 500 that is the problem (It shouldn't be without IKE).

Is there an issue with IPSEC pass-thru???

Any assistance would be greatly appreciated, as I would like to avoid havingto travel 3 hours to this client, on a regular basis.

[Ryan Sutton]

For what it's worth, I had the same probme with Nortel Extranet IPSEC VPN client.  For some reason it works with e-smith 4.1.2 (with:  updated telnet and billion bug, added port forwarding, added ipsec frees/wan for LAN VPN).  I have no idea why 4.1.2 works and 5.0 does not.

[Quade]

How did you do this in 4.1.2? I'd love to know (I have to do the same thing myself on 4.1.2)

[Ryan Sutton]

Quade,

When a Windows 2000 box is behind a 4.1.2 server-gateway, the Extranet IPSEC VPN client connects.  When the gateway is changed to a SME 5.0 or 5.1 server, Extranet fails to find the host.  Using 4.1.2 as straight gateway, no proxy, transproxy or squid (no user accounts on e-smith).  E-smith 4.1.2 has static IP on a T1 line.  I did nothing to allow the Extranet Client to work from behind the e-smith server, only discovered it works from behind 4.1.2.  I already mentioned the rpms I added to the 4.1.2 server.

Good Luck, and if anyone knows how to get IPSEC on port 500 I think to pass a SME 5.0 Server, please post it.

RS