IPsec VPN "shared secret"
|
Prev: RWW (SBS) with SonicWall: Lan = OK Wan = No Go :(
Next: SBS 2008: Can't connect to internal website through RWW
From: John on 21 Jan 2010 13:42 Hi sbs 2003 standard. We have setup the remote access/vpn using the standard method of running the remote access wizard. A few of our clients are macs and the mac company has asked for a "shared secret" that is 'needed for authentication over a IPsec VPN'. What is this shared secret and how can we implement it for them? Thanks Regards
From: Steve Foster on 21 Jan 2010 14:25 John wrote: >Hi > >sbs 2003 standard. We have setup the remote access/vpn using the standard >method of running the remote access wizard. A few of our clients are macs >and the mac company has asked for a "shared secret" that is 'needed for >authentication over a IPsec VPN'. What is this shared secret and how can >we implement it for them? Tell them it's a PPTP VPN, and there is no shared secret. -- Steve Foster ------------ Please reply only to the newsgroups. For SSL Certificates, Domains, etc, visit.: https://netshop.virtual-isp.net
From: Joe on 21 Jan 2010 14:35 John wrote: > Hi > > sbs 2003 standard. We have setup the remote access/vpn using the standard > method of running the remote access wizard. A few of our clients are macs > and the mac company has asked for a "shared secret" that is 'needed for > authentication over a IPsec VPN'. What is this shared secret and how can we > implement it for them? > If you don't know, you don't have one. The default VPN used by SBS, and the default type that a Windows client will attempt, is not IPSec but PPTP (Point-to-Point Tunnelling Protocol). By default, you log in using a Windows AD account. SBS can use IPSec, but unless you specifically told it to, and did a lot of messing about if you use a NAT router, then you are using PPTP. IPSec is normally used for site-to-site VPNs where it can be implemented between the Internet routers, avoiding the NAT problems. Check in your RRAS configuration, or your router forwarding ('PPTP', or TCP port 1723 *and* Protocol 47). SBS can also use the L2TP VPN, which is also IPSec-based, but this is not common. I would have thought Macs can connect using PPTP, as Linux certainly can. While PPTP is a proprietary Microsoft protocol, which is probably why it doesn't spring to a Mac user's mind, it has been around a long time. There are extra layers of security that can be added to PPTP, but again, unless you specifically did this, and the memory would be burned into you for life, than it hasn't been done. -- Joe
From: Tom on 22 Jan 2010 11:09
On Thu, 21 Jan 2010 19:35:53 +0000, Joe <joe(a)jretrading.com> wrote: >John wrote: >I would have thought Macs can connect using PPTP> They can and do. |