Hi all,
I've got a small problem and need to pick your collective brains for a solution.
I am trying to setup an SSL VPN connection to my SOHO network from out on the road (hotels mainly). But have run into an issue. My ISP.
I bought a Netgear SRXN3205 which seemed to offer all the enterprise functionality you could hope for. Including SSL VPN software & functionality built in. Nice.
However, my ISP (unknown to me at the time) blocks incoming connections to my IP address on port 443 (https). Which means that I can't get a connection from the outside world to my router to start the VPN process.
I managed to "partially" get round this problem using the SRXN3205's firewall, by setting up a rule to forward, from the WAN side, any connections coming in on another (non-blocked) port back to 443.
Behold! My VPN webpage and software are visible, but on trying to login I run into another problem. The VPN software (VirtualPassage) is partially Java based, partically dll binary code (from a third part provider, who also use the same software in Cisco Linksys equipment) and basically touching the VPN website starts a chain reaction where by the software is downloaded to your client PC and installed automatically then executed automatically (everytime you logon).
The software even removed itself when you close your session.
And here's my problem. Somewhere in the midst of the Java or dll's is a parameter that says to make a connection (independantly from the webpage) on, you guessed it 443! Doh!
So, does anyone have any ideas how I might fool the software and allow it and it's config to make the call on 443 but really forward it to my secret port that works ? I'm primarily working off Windows based clients by the way.
Any help gratefully received.
Griffo.
I've got a small problem and need to pick your collective brains for a solution.
I am trying to setup an SSL VPN connection to my SOHO network from out on the road (hotels mainly). But have run into an issue. My ISP.
I bought a Netgear SRXN3205 which seemed to offer all the enterprise functionality you could hope for. Including SSL VPN software & functionality built in. Nice.
However, my ISP (unknown to me at the time) blocks incoming connections to my IP address on port 443 (https). Which means that I can't get a connection from the outside world to my router to start the VPN process.
I managed to "partially" get round this problem using the SRXN3205's firewall, by setting up a rule to forward, from the WAN side, any connections coming in on another (non-blocked) port back to 443.
Behold! My VPN webpage and software are visible, but on trying to login I run into another problem. The VPN software (VirtualPassage) is partially Java based, partically dll binary code (from a third part provider, who also use the same software in Cisco Linksys equipment) and basically touching the VPN website starts a chain reaction where by the software is downloaded to your client PC and installed automatically then executed automatically (everytime you logon).
The software even removed itself when you close your session.
And here's my problem. Somewhere in the midst of the Java or dll's is a parameter that says to make a connection (independantly from the webpage) on, you guessed it 443! Doh!
So, does anyone have any ideas how I might fool the software and allow it and it's config to make the call on 443 but really forward it to my secret port that works ? I'm primarily working off Windows based clients by the way.
Any help gratefully received.
Griffo.
