1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

RV0...QuickVPN and PPTP blows up if 443 forwarded elsewhere?

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by YeOldeStonecat, May 7, 2007.

  1. YeOldeStonecat

    YeOldeStonecat Network Guru Member

    Here's an odd one......I have a 50x user RV016 in production. Got tired of the QuickVPN issues..so I got my client a Juniper Netscreen sa700 SSL VPN appliance. Put it behind the RV016.

    Figured I'd use the PPTP VPN as a backdoor to service their network, and just flat out stop using QuickVPN.

    Port foward 443 to the Juniper box...and QuickVPN as well as PPTP VPN, blows up, invalid user/pass. Now QuickVPN failing to run...I can see, and franky don't mind. But PPTP VPN suddenly failing to work? Errr...hmmm

    Rebooting the router restores it if I remove the port forwarding of 443.
     
  2. Toxic

    Toxic Administrator Staff Member

    I can understand QVPN failing once you port forward the 443, as https has to be enabled for QVPN to work, but why PPTP would fail as well, is beyond me. I shall however endeavor to find out.
     
  3. ifican

    ifican Network Guru Member

    Very interesting, there is only one reason that is not working, the code that the RV016 is using has a bug in it. I have several devices here i can forward one or the other and have no issues with the one i do not forward. My only guess is 443 is tied into the vpn engine, so when the port is forwarded it tells the code to shut down / ignore all incomming vpn traffic. Not right but most likely the case.
     
  4. sybil0105

    sybil0105 LI Guru Member

    we had try RV016 version v2.0.17 and v2.0.17-q50,
    set port forward 443 rule for a PCA and enable VPN PPTP server function ,in internet pptp client can connect pptp server from RV016 WAN IP .
    maybe you can tell us what config you set up ?
     
  5. ifican

    ifican Network Guru Member

    Did you forward 433 or 443?
     
  6. YeOldeStonecat

    YeOldeStonecat Network Guru Member

    That was my thoughts exactly....I don't mind losing the QuickVPN..as the Juniper is taking over the job for all the 30x plus VPN users. But I wanted PPTP (which the Linksys does well) as a back door. Totally different type of traffic, port 1723 and IP type 47 GRE.
     
  7. Toxic

    Toxic Administrator Staff Member

    what version of firmware are you using on the RV016?
     
  8. aviegas

    aviegas Network Guru Member

    QuickVPN uses port 443 for the HTTPS authentication and password change. Later versions of the code also listen on port 60443, in case the user needs to forward port 443.
     
  9. sybil0105

    sybil0105 LI Guru Member

    sorry forward 443
     
  10. YeOldeStonecat

    YeOldeStonecat Network Guru Member

    The latest that's available for the Q50 package. They are slow in releasing the latest versions with VPN updates...so the Q50 package is probably 1x version behind the latest official standard release.
     
  11. sybil0105

    sybil0105 LI Guru Member

    may i ask you a question , PPTP server is LAN pc you set up or RV016 PPTP server ? I try to set a forwarding rule about port 1723 for a pptp server(XP),and forward 443 for another pc , internet pptp client can connect pptp server(xp) via RV016 WAN IP, We don't see the problem you had.
     

Share This Page