Broadcast traffic over VPN

Similar Messages

• How can i use an existing vpn connection without using the option "Send all traffic over vpn connection"?

  I have been trying to get my computer (os x.7) to astablish a remote desktop connection to my work computer via a vpn tunnel. In fact I have just discovered that it works fine if i select to "send all traffic over vpn connection" from the options in the advanced setup of the vpn.
  If the option is selected microsofts "Remote desktop connection for mac" works just fine. However without selecting the option it is not taking advantage of the tunnel but tries to connect as if the tunnel would not exist.
  Now the question is how do I get program to use the vpn tunnel without checking the above option?
  Thanks for any hints and pointers.

  Then can her computer be authorized to both accounts?
  Absolutely. You can authorize any given computer to up to five iTunes Store accounts.
  If purchases are made on her account, to a computer authorized to my account, can I put those songs on my iPod?
  If you connect your iPod to her computer, yes. Tracks download only to the computer from which they're purchased, regardless of which iTunes Store account is used for the purchase. Or you could copy the tracks from her computer to yours and then authorize your computer to her iTunes Store account. But that's sort of defeating the original purpose, it would seem to me.
  is it better to buy music through Amazon downloads and/or actually purchasing CDs to avoid the security features iTunes puts on its music?
  That's certainly an option. If it's an entire album I want, I buy CDs. That way I can import them at the quality I want and to whichever of my systems I want. Amazon or one of the other download stores that offer tracks as MP3 are also an option, though for me download stores are best when you just want a couple of tracks off a given CD.

• Send broadcast packets over VPN

  How can I send broadcast packets over vpn , something like bcrelay in poptop linux ?

  Hi,
  Do you want forward NetBIOS broadcast?
  If so, open RRAS console, right clieck VPN server, properties, IPv4, check the option Enable broadcast name resolution.
  Hope this helps.

• VPN - can't access internet over VPN

  Hi,
  I have an issue with VPN.
  For my work I need to be able to log into my office network remotely and then access remote desktop connection from within my work network.
  This won't work unless I am accessing the internet from inside the VPN.
  I have got this working on a PC, just had to select "Use default gateway on remote network" and now when I access the VPN on a windows laptop I am accessing the internet over the VPN.
  When I connect to the VPN on the Mac I can access the network, email server, file servers etc, but can not access the internet through the VPN.
  I have tried:
  - changing the service order
  - ticking and unpicking the send all traffic over VPN setting
  I can get to the point where I can access my work network over the VPN while also accessing the internet over my wifi but cannot get it so I can access the internet over the VPN connection. It is a PPTP VPN.
  Does anyone know how I get my Mac to use the default gateway on the remote network?

  If this server is behind a (NAT-) router you need to turn on "ipforwarding only" in Server Admin NAT configuration otherwise the server wont route packets beyond it's subnet.

• How can i configure my iphone to only pass traffic from certain apps over vpn

  I have got a telephony app that connects to a phone system through vpn. when I turn on "send all traffic through vpn" internet and other apps are really slow. is their a way to configure the phone to send only traffic from the app through VPN.

  Now all my new apps as well as several others are gone from the iPhone.
  Look on other screens. The 4.1 update ands Game Center to the home screen. If that screen was full it create a blank screen and moves one app from the home screen to the new screen to make room for Game Center. All the other screens are pushed back one place.
  How can I get my apps back? It cost me a lot of time and money to discover those apps and get them onto the phone. Are they just gone now?
  If they are really gone, you can download them again. You will not be charged again if you use the same iTunes account.

• NetBIOS broadcast traffic not directed to all network interfaces

  Hi folks,
  Using a packet sniffer (WireShark), I've found that my Mac broadcasts NetBIOS Name Service (NBNS) traffic over my en1 (WiFi) interface but not over the ppp0 interface used for my Mac's PPTP VPN client connection. As I'm experimenting with enabling Windows computer names over a PPTP VPN from my Mac I was wondering... how can I configure my Mac to direct NBNS traffic over the ppp0 interface?
  Thanks,
  Shaun

  IGMP snooping may be enabled by default on the 6509. Disabling it may solve your problem.
  http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/122sx/swcg/snooigmp.htm#wp1020466

• VOIP over VPN dropp RTP protocol

  We are installing a new 2911 ISR in our office and connecting with a Linksys (CISCO) RV016 VPN router.  These are two small doctors offices that need to have computer, and Voip traffic over a VPN.
  Currently we connect an older RV082 and the RV016 together and have NO issues with VOIP traffic.  If we establish a connection with the 2911 router then we are having an issue with no voice or RTP traffic coming through.  Phones will connect, and dial out, but no voice can be heard.
  The First office is on a Verizon Fios Network with a MTU of 1492. The Network and servers are as follows:
  Remote Office                                                                            Main Office
  Linksys Spa 942 phones
                 |                                                                        
  Netgear 10/100 POE Switch
                 |                                                                        =================
  Linksys (cisco) RV016 VPN                                            |          2911                 |
                 |                                                                       |    POE Module Sw     |
  Comcast Cable Modem                                                  -------------------------------       
                 |                                                                                       |          |
               VPN                                                                                VPN       |
                 +=======================================+     Asterisk
                                                                                                                (Call Man)
  Basically we have the Internet coming in from Gig0/0 and routing traffic to multiple outside IP addresses so we are using 3 subs in our configuration.
  192.168.1.X          192.168.2.X          192.168.3.X               192.168.0.X (Remote Group)
  When we connect the old routers (RV016 and RV082) VPN VOIP and Data traffic go fine.   We are using a Term Server on one end, Web Server, and the Asterisk PBX for our VOIP Call Manager.
  So far we connect up the 2911 and the RV016 and have no issues with data traffic.  But the VOIP is dead on the remote end.  No sound.  We did a Wireshark on traffic, and we are getting some 407 errors from the Astersick Host, and a unknown RTP version 1 error message.  THe only thing that we had to do on the RV082 router was port forward UDP 506 and 10001 - 20000 for the traffic, and setup a access rule, but nothing else.
  We are getting traffic on the 2911, but nothing else.  We have excluded the 192.158.0.X traffic from the NAT so not to get into that issue, and have even tried forwarding ports but nothing seems to help.  Is there a good way to route this traffic?  Our bandwidth is pretty fast so I am not sure if QoS is needed, but if so it is not one of my strong areas.  What is the best way to route this traffic through the VPN without loosing the RTP part of the call.

  I put this line in and still not getting audio on the other end.  I will be doing captures tonight from working and non working phones.  I need to get this resolved.  I have spent 3 weeks on this issue and I have run out of time.  Should I use the DEBUG VOIP SIP command for the capture on the router?  I believe this would be the best resolution to the service to see what is going on.  The phones work with a RV016 and RV082 router in place.  All data traffic works fine in sending and recieving calls.
  I have read about all of the articles on Cisco and voip traffic.  We are going to be shutting off the natting on the router to see if I can just get the voip traffic to flow.  Once we get it flowing then I can work on building up the house on a stable foundation.
  At this time, we are routing multiple IP addresses throught the 2911 and have IP NAT OUTSIDE on the G0/0 port and IP NAT INSIDE on the G1/0 Interface, which is a POE Switch Module in the 2911.
  I know that the cisco router wants to act as a call manager, or terminate the SIP traffic on the 2911, but we have a working Asterisk box that handles all SIP traffic.  If there is a way to just forward the traffic there properly, without the 2911 trying to intercept the traffic, that would be wonderful.  I am looking at the possibility of creating dial-peer groups for all of the phones, but really is this needed?  What is so frustrating about the whole situation is that I put in a 5 year old sub $200 router and everything works.
  Dale

• SoftPhone over VPN audio issue

  Having a "one-way" audio issue when IPC connects over VPN to any Main Office IP Phones (7960). Remote IPC (softphone) shows "0 Received" Packets, but the IP Phone shows them as being sent.
  This does NOT happen if IPC contacts another IPC on a PC at Main Site, or any kind of phone at the other branch offices.
  Have looked at all of the audio settings on the VPN IPC unit, they are correct.
  Any ideas?

  Try to sniff the Ethernet traffic during call setup at the CallManager. When Callmanager sends Call Control messages to remote party, it could send wrong IP address or UDP port as an RTP parameters.
  Another components could block the traffic are firewalls. How do you have your VPN tunnel built? Do you use Cisco VPN Client? What terminates your VPN traffic at the central location? PIX, VPN3000 or Router? Traffic may go one way without a change, and some protocol FixUp may be triggered for this traffic on the way back. If you have access to firewall logs, check if you have any traffic dropped.
  Good luck,
  Mike
  http://www.headsetadapter.com

• DNS over VPN

  Hi community,
  I am having some trouble with dns over vpn. On server side of VPN the dns is working 100% i.e servername.domain.com resolves to local IP address correctly from within network. However, when i connect into network over VPN the dns does not work correctly - it resolves servername correctly but not servername.domain.com. I can overcome this by setting VPN above my Ethernet adaptor in service order but then all my traffic gets routed over VPN connection (which i don't want) - even if I try adding network routing defn on VPN server. I probably need to do something on the VPN client (Snow leopard 10.6.1)?
  Please help!

  Rather than dnsmasq and openwrt, I'd look at the DNS server here.
  My guess here would be that the DNS configuration is invalid, or the domain name incorrect, or such.
  For a simple split-brain, you'll have one forward zone with your local Mac OS X Server box as the DNS server, and one (created for you) reverse DNS zone. And you'll be using a unique domain name or (far better) a publicly-registered DNS domain. But this smells like a DNS error.
  Post the +dig -x+ of the IP address on your LAN, and the +dig host+ and +dig host.example.com+ of the domain name on your LAN. And given this DNS information is either public or is behind a firewall and thus accessible only via VPN, please post the real data rather than masked data.

• VOIP over VPN need clarification

  Hi,
  Recently I have implemented Site-to-Site VPN between ASA and sonic wall firewall.
  Problem: I can able to make call from ASA side(inside) Ip phone to sonic wall (inside) side Ip phone and vice versa and it’s ringing, But not able to hear voice. So I created VOIP over VPN configuration and applied appropriate service policy towards outside interface. But still I was not able to hear voice.
  Tried below mentioned t’shot steps:
  From ASA side we had two subnets (10.20.1.x/24 – Data and 10.20.2.x/24 – Voice ) and one subnet (192.168.x.x/24 ) from sonic wall side as interesting traffic ( lan to lan). When I configured site-to-site configuration on both ends my phase-1 and phase-2 came UP and can able to communicate between each other. (In interesting traffic I created two objects and bind those objects as one object-group for source i.e. ASA side lan subnet and one object for remote-Lan as destination)
  My call manager is rest behind ASA and Ip phones needs to communicate from sonic wall side to inside ASA.
  I can able to make call from ASA side(inside) Ip phone to sonic wall (inside) side Ip phone and vice versa and it’s ringing, But not able to hear voice. So I created VOIP over VPN configuration and applied appropriate service policy towards outside interface. But still I was not able to hear voice.
  So, I  done supernetting the data subnet and voice subnet into single network i.e. 10.20.x.x/16 at ASA side and applied the configuration changes (changed ACL, nonat rule, Voice QOS ACL accordingly), and I’m able to hear voice both end and I can communicate properly from ASA inside Ip phone to Sonic wall inside Ip phone and vice versa.
  My question: I’m not understanding the logic how this supernetting resolved dead voice issue.
  Pls clarify my question I’m bit confused on this.

  It's not recommended. Although VPNs guarantee a secure pipe end-to-end, they don't guarantee latency and variations in latency (Jitter).

• CUPC Over VPN

  We resolved a VPN issue that was preventing us to be able to log in to CUPC over VPN. I am now able to log in, I can see my buddy list and their status, however the CUPC status in the bottom of the window is listed as "Offline (No Network)".
  Server Health:
  Logon Server: Not Connected - Disconnected
  Phone Config: Downloaded
  Presence: Connected
  Desk Phone: Not Connected
  Softphone: Not Active
  Voicemail: Connected
  Secure Messaging: Not Connected - Server Unreachable
  LDAP: Not Available - Server Unreachable
  What could be causing some of the servers to be connected while others are disconnected? We are running Microsoft ISA VPN.

  This is likely an ISA VPN configuration issue. CUPC creates separate connections to each system. For example, voicemail is an IMAP or secure IMAP connection, presence is a SIP connection, desk Phone is CTI, etc. All traffic is not tunneled through CUPS.
  You will need to troubleshoot the individual protocols to understand why Microsoft's VPN product is not properly transproting them. A good place to start would be attempting telnet connections from the VPN-connected machine to the locations specified in the relavent profile on CUPS. Example: Can you telnet to your LDAP server's port as defined in CUPS?

• Voice over vpn-call not completing

  Hi folks,
  I got a problem,where with voice over vpn. So far my voip calls were running purely on shared IP internet. Today we had tried to make two side a vpn site-to-site tunnel and send traffic thru.vpn is working. (md5,des)
  The problem We faced is when i dial a number, the other side party's phone rings for 6-8 seconds and the call gets disconnected.Whether or not the called party answers the call gets disconnected after 6-8 secs. Iam not getting any ring back, while actually other side phone rings. No voice is going thru.
  my network is normalpbx--to--Cisco3800 to--Pix--to--QuintumGateway
  isdn debug shows Cause code18-no user responding.
  help me on this...

  Hi,
  can you provide configurations of the voice gateway and pix.
  Anyway my best guess is the PIX:)
  Check timers, check security policies.

• Problem with IP phone over VPN

           |   UC520   | ------------------------ |     861     |
                   |                                                  |
                LAN                                             LAN
  Scenario:
  UC520 box is at HQ and serving as a EZVPN server and 861 at branch as a EZVPN client. There is no problem with VPN i can communicate with HQ network. My ip phone get registered but facing these problems.
  1) Dialling out and in OK
  2) Connects OK after picking up
  3) NO sound either way
  4) Cannot end call from this side. End call button does not work
  5) When other end hangs up - message "UCM down, features disabled". Then phone registers again.
  Identical symptoms for both softphone and 7941.

  This document provides a sample configuration for Quality of Service (QoS) for Voice over IP (VoIP) traffic on VPN tunnels that terminate on the PIX/ASA Security Appliances.
  http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008080dfa7.shtml

• Mail, iCal Server and iChat server will not work over VPN

  I have an Airport Extreme Base Station at the office running the network. Behind it sits a Mac Mini Snow Leopard server running 10.6.3. The ports necessary for Mail, iCal Server and iChat work fine through that external connection. I can also connect with VPN from my 10.6.3 clients.
  HOWEVER, when I connect with the VPN clients, I am suddenly unable to access the Mail, iCal Server, Wiki server and iChat server. All connections time out. I can ping the server and I can do other things that do NOT work on the public Airport like ssh or VNC. ssh and VNC are closed at the airport extreme.
  So it's pretty odd. When I'm connected via the VPN, all ports that are forwarded to the Snow Leopard server time out over the VPN.
  I've tried various and sundry configurations with the VPN client. This includes trying to send all traffic over the VPN, moving it up in the service order, etc. etc. Nothing fixes it. DNS resolution is working fine, however when I do a wireshark capture of ppp0 traffic, I notice that SSL and TLSv1 handshakes appear to occur on the public IP address instead of the private network IP address... and they're all resets.
  Has anyone gotten this to work successfully? Like I said, all ports that are NOT forwarded through the Airport work fine over the VPN, but will not work when connected to the VPN. It's really bizarre.

  New data: any ports that are normally forwarded on the Airport Extreme to the Mac Mini server will not work when connected to the VPN.
  For instance, if I have imaps/993 forwarded from the Airport Extreme to the Mac Mini, it works fine over the Internet. If I connect to the VPN, I can connect to all OTHER services on the Mac Mini, but Mail, for instance, will not work.

• Can't mount share points over VPN after moving server

  I'm tearing my hair out over this one. We have a server that was located in our office. I just moved it downtown to a colo center (no longer in office) and set up VPN access.
  However, nobody is able to mount the server share points, even though the connection to the VPN seems to work fine (e.g.: I choose "connect to L2TP..." and it connects, VPN icon shows I am online with the server).
  Any attempt to mount a share point fails. I've tried using afp://servername.com and I've tried afp://64.xx.xx.xx (where that's the machine's public IP address). Am I supposed to use a different address (such as an internal 192 address that works over the VPN) or should I be able to mount the afp point using the server public domain name? Should I try NFS?
  Any help would be appreciated -- really need to get access to this system's files again! Thank you!

  Morris Zwick wrote:
  And does anyone know which IP you enter for your sites in the web service? The public static IP or the internal private static IP?
  For the external DNS server I am sure you have already deduced that it should be the static IP issued you by Comcast and this will be forwarded by your router to your server.
  For your internal DNS server you could use either the internal LAN IP, or the external IP although the later might be affected by your firewall so this you will need to test.
  For the Web Server service in Server admin, if your only running a single website you could avoid the issue by just using the wildcard entry which will respond to any IP address, so this would be an empty host name and an IP address of *
  In fact you don't have to specify an IP address you could just use the hostname, so it will listen to traffic arriving at your server addressed to any IP address and as long as the URL that was requested includes the hostname you define for the site it will get responded to. So if as an example you have two websites you want to serve
  www.example.com
  site2.example.com
  then as long as both have the IP address for the site as an * (asterisk) then both should work as separate sites for traffic addressed to either the LAN or WAN IP address of the server.
  You will still need to use two IP addresses on the server to enable VPN, you could use a USB Ethernet adapter for the second one. Port forwarding for VPN is not as simple as other traffic as VPN requires traffic different to the standard IP and UDP packets. Routers that support 'VPN Passthrough' are specifically designed to accomodate this but I don't know if the AirPort Extreme does this. I have also found PPTP copes better with this sort of setup than L2TP although PPTP is generally regarded as less secure.