• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

VPN with Wired Laptop Networked with Wired Desktop

D

DCypher

Senior member
Hey guys,

I need some help, I have a desktop with a hardwire to an internet connection and then a hardwire between my laptop and desktop. What I need to do is connect to a VPN, but I can't seem to make the connection. The laptop pulls the internet connection from the desktop just find but will not connect to the VPN. I pinged the hostname of the VPN server from the laptop and it gets a reply. Does anyone have any idea why it won't connect. I would really appreciate any ideas, the quicker I fix this, the easier my life can be. Thanks!

Brian
 
so youre going cable/dsl modem > desktop > laptop?

maybe a NAT/firewall issues between the desktop and laptop, since in your case the desktop is acting as a router as well to share its own connection.

is this for work? is there no IT guy there to help? does it work when you just skip the desktop and plug the laptop in?

kinda surprised nobody has jumped on this one, and im not the biggest help 😛
 
I don't believe that Internet Connection Sharing supports PPTP passthrough, which is what you need to make this work.

I would suggest that you invest in a router. They're not that expensive any more.
 
Ok, so I may need to buy a router...I might run into issues there too.

So here is the situation. I need to use my work computer at college. My college's wireless requires you to connect to a VPN. However, in order to access a lot of the systems on my work computer, I need to access my work's VPN. To the best of my knowledge (and my more network-savvy friends), you can't run a VPN through another VPN tunnel. So, i do have an option of using the wall jack with my laptop, however, at my university, your wall jack will only work for a certain MAC address (which I have set to the MAC address of my desktop's ethernet adapter). This brought me to the idea of routing my laptop VPN through my desktop's adapter, which as stated above does not work. So I think I'm being pushed into two solutions. One, what Drebo said, however, I will either have to change the MAC address of my router (is that possible?) to match my desktop's MAC address (would that cause conflicts with two items having the same MAC address)? Or I was thinking about buying a Verizon Wireless aircard and just using that (would there be any VPN connection issues with that solution)?

Thanks for the help so far, the answers have been great and have been guiding me.

Brian
 
It would help if you told us what the VPN protocol / settings / software exactly is. Different VPN setups have different requirements for the way you have to configure the networking on the systems being used.

In general some VPNs pass through NAT, others do not do so without setting a configuration option to allow NAT transversal. Some have the choice of using an IP protocol like AH/ESP on the wire, others allow encapsulation in UDP packets.

In general if you enable UDP packet encapsulation, NAT transversal, and configure the MTU of the VPN packets to be small enough that they can be further encapsulated or have further headers added to them and still fit in an 1500 byte ethernet frame or less, things tend to work better.

There is no GENERAL reason you can't run a VPN inside a VPN inside a VPN ... as much as you want. Some VPN software tries to lock down other networking ports / software on the PC it runs on other than its own as a security measure, but that is not VPN related, that is just something that may be done by certain software providers unrelated to the VPN technology.

Running a VPN may change your routing table so you may need to be aware of how your routes are defined if you have a particularly complex setup.

You cannot have multiple identical MAC addresses on the same LAN segment, but it may work OK on different LAN segments. It is commonly a feature of wireless or wired routers to be able to change their MAC address to match the PC behind them or to assume a specified MAC address. If you're worried about / having problems with doing that and not changing your PC MAC address too then just change the PC MAC (often also a configuration option in the PC's driver) and you're all set. Or get one of the $6 USB to 10/100 Ethernet dongles and plug that into the router when the router is set to the PC's MAC address. Personally I assume it'll "just work" since they program the routers with MAC cloning to handle this case....

If you had (Laptop) --- (PC) --- Net Jack
then you can either BRIDGE the PC's two ethernet ports in which case the Laptop would look like it is connected directly to the Net Jack even though it goes "through" the PC's bridging. The LT's MAC would be directly on Net Jack's network, and the LT would need its own IP address assignment etc. If that was all OK, however, the VPN or whatever it ran should work just as well as if it went straight into the Net Jack ignoring the PC's presence.

Verify that any firewall software on the PC isn't blocking the packets / protocols you need for the VPN.

Laptop -- PC -- LAN
If you use the PC as a NAT gateway for the laptop to connect through like with an Internet Connection Sharing setup, the PC and the Laptop will have identical IPv4 addresses as is seen by the external network LAN the PC is connected to. The port number would be the main way the PC would know to forward certain traffic to the Laptop instead of processing it itself. Ensure the PC firewall and NAT sofrware is set up to pass the protocols / ports / traffic types your VPN needs. Use UDP encapsulation and NAT traversal settings for the VPN.

Personally I'd buy a decent router and use that in front of your PC and Laptop and get one that has the right kind of VPN pass through, port forwarding, firewall, MAC cloning, etc. support you need for the VPN setup.


 
dont some school have policies where no routers are allowed at all? im sure ive read a few members here complain about such a thing.
 
Ok, so I decided to get a Verizon USB 727 aircard. Problem now is, it won't install, assumedly because I don't have administrator privilages on my company laptop. The specific error is "The file 'C:\\WINNT\system32\msvcrt.dll' could not be opened. Please check that your disk is not full and that you have access to the destination directory. Access is denied."

Does anyone know a manual way of installing the Verizon VZAccess software? Or do I have a problem... Thanks!
 
You can't even login as a local (non domain) administrator?
My condolences.
I suppose you could hack it.. but your company IT people might not like that.
 
Originally posted by: QuixoticOne
You can't even login as a local (non domain) administrator?
My condolences.
I suppose you could hack it.. but your company IT people might not like that.
Click to expand...

honestly if he has a problem with a company laptop, like getting a vpn setup from his home location, theres no good reason for him to come here before he goes to the IT department unless they are wholly incompetent or unwilling to help.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top