[BC] Help on VPN setup
George Nicholas
georgenicholas
Sat Oct 1 17:34:13 CDT 2005
Cowboy - I used the 192.168.0.5 address because the 318 defaults to a 0
address out of the box. of course you can specifiy another starting address
and range for DHCP.
You can also specifiy a port (besides 80) for remote management.
(I'm no expert, I'm learning every day!) :)
gn
----- Original Message -----
From: "Cowboy" <curt at spam-o-matic.net>
To: "Broadcast Radio Mailing List" <broadcast at radiolists.net>
Sent: Saturday, October 01, 2005 3:56 PM
Subject: Re: [BC] Help on VPN setup
>
> On Saturday 01 October 2005 14:31, George Nicholas wrote:
>
> > In theory, once the VPN tunnel is working, you should be able to ping
the
> > internal IP address of computers on the other side, ie 192.168.0.5. If
you
> > can, then you have connectivity (at least you can ping)
>
> That's pretty straight-forward, and crucial.
> Can you, in fact, via the VPN tunnel, ping any of the non-routable
> private block IP's on the other side of the tunnel ?
> If so, then the public side is not too relevent, and the tunnel should
> act like a slow, but direct, ethernet connection.
> If you can not, then can you ping the public, routable side of the router
?
> Since M$ screwed up with the Ping Of Death, even if you can not, this is
not
> definitive, but if you can, then you'ld know with certainty that there is
a
> problem with the tunnel.
> If you can not, then you need some other protocal to which the public
interface
> will respond, in order to do the job ping and pong were designed for.
>
> In the example IP given above, I can't help but mention that using
> the special case mask numbers zero or 255 as a network, or machine
> address is a really, really, REALLY bad idea.
> That alone could completely screw up an otherwise fully functional
network, as
> M$ once again, chose to ignore convention.
> How any particular element responds to a mask depends entirely on which
> school it's from.
> Pure M$ ignores masks, depending on context, and sometimes every address
is
> treated discreetly, or not depending on the context, while anything else
takes a mask
> for what it is, and the response becomes configuration dependent as a
result of
> applying that mask.
>
> While the machines may well ( being M$ machines ) respond to the zero, or
a 255, the router
> may interpret this as a request to route to the one and only one machine
that has every
> possible individual IP address in that entire block.
> Clearly, an impossibility, so the router may simply drop the packet as a
non-routable error.
>
> Once the VPN tunnel is established, this should not matter, as the
packets with the
> garbage addresses will be encased in wrappers that pass through the VPN,
and depend
> on the routing on the other side entirely.
>
> --
> Cowboy
>
> http://cowboys.homeip.net
>
> omnibiblious, adj.:
> Indifferent to type of drink. Ex: "Oh, you can get me anything.
> I'm omnibiblious."
>
> _______________________________________________
> This is the BROADCAST mailing list
> To send to the list, email: broadcast at radiolists.net
> For sub changes, archives and info on this other lists:
http://www.radiolists.net/
>
More information about the Broadcast
mailing list