1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Using WRV200 as VPN client to Web

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by Buickman, Jun 12, 2007.

  1. Buickman

    Buickman LI Guru Member

    Hi all, I've been doing a lot research on how to do a DIY VPN for using my laptop on the road for added security. I've looked at some of these Linksys routers that have VPN capability, but I can't find any info on whether or not you can VPN to the router, then go back out to the net to surf web pages, or if you can only VPN to your LAN. Or if that isn't a stock function that is available, I do like like to get my hands dirty so to speak and get a little geeky building things. I do know that I could have a computer running on my LAN to go through, but in the interest of not leaving a computer on if I'm out on the road for a week, I would to accomplish this in the router itself. Thanks in advance for any help.
     
  2. DocLarge

    DocLarge Super Moderator Staff Member Member

    Basically, the wrv200 can handle "client to gateway" vpn (laptop loaded with quickvpn software) and "gateway-to-gateway" vpn (connection from one vpn router to another vpn router). Either way, once you connect to the wrv200 via one of those two vpn methods, you can access your local LAN and any shares you have permission to.

    Another great feature about the wrv200 is that is supports GRE, so you can actually forward port 1723 to a computer on your LAN that's configured as a vpn server and use the native microsoft PPTP vpn client (if you're running a version of windows) and connect. If I recall, if you connect with quickvpn, you can still access the internet. Now, if you connect using the microsoft vpn client "through" the wrv200 and to a vpn server, you won't be able to connect to the internet "unless" you uncheck the "use default gateway option" in the properties of the vpn client.

    Is that close to the answer you're looking for?

    Jay
     
  3. Buickman

    Buickman LI Guru Member

    What I'm looking for (if it's even possible), is to have the router act as the VPN server so I don't have to have a desktop computer running at home all the time. Basically I want to do the "client to gateway" method you described, but instead of accessing shares on my home or office LAN I want access the internet. I want to do this instead of paying a service like HotSpot VPN for secure surfing while on the road.
     
  4. eric_stewart

    eric_stewart Super Moderator Staff Member Member

    Nope. Won't do that unfortunately. The WRV200 doesn't support "hairpinning" which is the tekky term for what you're describing. This is also called "backhauling" and is typically a feature of higher end VPN endpoints such as VPN concentrators and other devices such as Cisco firewalls. I've also heard this called "IPsec-on-a-stick" .... a reference to Inter-vlan routing being called "router-on-a-stick".

    Here's one reference to this feature on the Cisco site: http://www.cisco.com/en/US/products...ration_example09186a00804675ac.shtml#ra-sol-2


    /Eric
     
  5. Buickman

    Buickman LI Guru Member

    Is there any third party firmware that supports this kind of functionality? I have an old WRT54G V3 at home that at one time I ran DD-WRT on, but flashed it back to stock ( one of those things I just did because I could and was bored one day).
     
  6. eric_stewart

    eric_stewart Super Moderator Staff Member Member

    DD-WRT (and others) supports PPTP Server. I believe that if you setup the MS PPTP client to "use gateway on remote network" in its advance TCP/IP settings (per DocLarge's post) you can route your traffic through the remote network back to the Internet. I know that this feature works for sure on the RV042 which has native PPTP server support.

    DD-WRT also supports the OpenVPN server. You can google for a Wiki on this subject. I also believe it's on DD-WRT's own Wiki. (http://www.dd-wrt.com/wiki/index.php/Main_Page) I don't know if *that* supports what you are trying to accomplish but MS PPTP with 128-bit MPPE encryption is pretty darn good and should do what you need with a minimum of fuss.

    /Eric
     

Share This Page