Jump to content



Photo

Access VPN externally


  • Please log in to reply
10 replies to this topic

#1 viennaa

viennaa

    Neowinian

  • Joined: 04-July 14

Posted 18 July 2014 - 19:09

Hi all,

 

I've set up VPN on my Windows Server 2012 R2, I can access this internally, but externally I can't. My host PC and my Hyper-V Windows Server box have the same external IP, any ideas how this can be resolved?




#2 Geoffrey B.

Geoffrey B.

    LittleNeutrino

  • Tech Issues Solved: 11
  • Joined: 25-July 05
  • Location: Ohio
  • OS: Windows 8.1u1
  • Phone: Nokia Lumia 928 WP8.1u1

Posted 18 July 2014 - 19:11

I have deleted the duplicate topic for this.



#3 episode

episode

    Neowinian Fanatic

  • Tech Issues Solved: 3
  • Joined: 11-December 01

Posted 18 July 2014 - 19:21

Hi all,

 

I've set up VPN on my Windows Server 2012 R2, I can access this internally, but externally I can't. My host PC and my Hyper-V Windows Server box have the same external IP, any ideas how this can be resolved?

 

You need to port forward (on your router) the VPN port(s) to whichever IP hosts the VPN. Those ports are (unless you've changed them):

 

For PPTP: 1723 TCP and Protocol 47 GRE (also known as PPTP Pass-through)
For L2TP over IPSEC: 1701 TCP and 500 UDP
For SSTP: 443 TCP



#4 OP viennaa

viennaa

    Neowinian

  • Joined: 04-July 14

Posted 27 July 2014 - 12:16

I have these both setup on my router to the physical address of the Hyper-V connection, though my host PC has the same IP for my Hyper-V Windows Server...



#5 TPreston

TPreston

    Neowinian Senior

  • Tech Issues Solved: 1
  • Joined: 18-July 12
  • Location: Ireland
  • OS: Windows 8.1 Enterprise & Server 2012R2/08R2 Datacenter
  • Phone: Nokia Lumia 1520

Posted 27 July 2014 - 13:09

Use SSTP if you can so you don't need to mess with gre esp ah etc

 

 

though my host PC has the same IP for my Hyper-V Windows Server

That's the problem they need different ip addresses. You need to forward the vpn port or protocol to the servers ip.

 

Use http://www.mynetworktest.com/ports.php to test the vpn port is open.



#6 Walid W.

Walid W.

    I love Orcinus Orca

  • Tech Issues Solved: 3
  • Joined: 19-July 08
  • Location: Lost somewhere in Sweden
  • OS: Ubuntu, Debian, Backtrack 5r, Windows 7 & XP
  • Phone: iPhone 3GS, iPhone 4s & HTC One

Posted 27 July 2014 - 13:47

Moved to Internet, Network & Security.



#7 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 100
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 27 July 2014 - 14:38

"My host PC and my Hyper-V Windows Server box have the same external IP,"

Sorry but that is not possible, unless your talking they behind the same nat IP?

What is in front of your PC and server? If you want your server to be vpn endpoint - then you need to forward the required ports and or protocols through your NAT to the internet. It would be impossible for your host and vm to have the same public IP on them without major issues and nothing really working.

#8 Riva

Riva

    Neowinian Senior

  • Tech Issues Solved: 1
  • Joined: 11-February 07

Posted 27 July 2014 - 14:48

I have a similar setup as yours. I have one private network for all VMs with DNS, DHCP and Active Directory from a Domain Controller in a subnet different to the router one. I then have an external network which is shared with the host. My VPN server connects to both networks and provides VPN connectivity. In addition it provides internet access to the other servers with NAT.

You will need a static MAC address on your VPN server adapter. Then configure your router to have an IP reservation for that MAC address.



#9 OP viennaa

viennaa

    Neowinian

  • Joined: 04-July 14

Posted 27 July 2014 - 15:11

Server is 192.168.1.2, host PC is 192.168.1.11 (Internal IPs)

I've set up a External Switch in Hyper-V 

They have the same external IP when I check via www.whatsmyip.org



#10 Riva

Riva

    Neowinian Senior

  • Tech Issues Solved: 1
  • Joined: 11-February 07

Posted 27 July 2014 - 15:56

Server is 192.168.1.2, host PC is 192.168.1.11 (Internal IPs)

I've set up a External Switch in Hyper-V 

They have the same external IP when I check via www.whatsmyip.org

whatsmyip.org shows your routers IP, not the VPN server IP.



#11 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 100
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 27 July 2014 - 23:44

"Server is 192.168.1.2"

There you go on your router that has your public IP from whatsmyip forward the ports/protocols you need for the vpn. Where you might run into problems is many home routers have issues with doing a forward of a protocol like GRE (protocol 47) ESP and AH for example 50 and 51..

You have not stated what actual vpn your trying to run.

If the router will not forward protocols that may or maynot be used depending on the vpn your trying to use then placing it in the DMZ on the router sometimes works.