WinGate Forums

[stu28bu]

I want to double check my understanding of what needs to be available/opened up on a router prior to deciding to deploy a WinGate VPN solution.

Does the firewall/router device need to support IPsec pass through (NAT Traversal) in order for WinGate VPN to work? Or will simply opening up port 809 suffice?

The second question I have is I noticed in the white paper that it says that if remote users are on their own lans then they must have different subnets. Based on that I am lead to believe that the following situation would not work:

2 Employees wish to connect from their repective homes simultaneously. Both have installed simple cable/dsl home gateway routers and thus their PC's both happen to have local settings of 192.168.0.2 and masks of 255.255.255.0. They would obviously have different IP's from their ISP connections. Would these two employees be able to connect simultaneously? In other words are the different masks you talk about refer to the 192.168.x.x or the IP from their ISP connection?

Thanks!!!!

[adrien]

WinGate VPN uses only TCP and UDP, so that is all you need to open, the standard ports are 809, but you can change these to whatever you like (except obviously conflicting ports).

So no, the router doesn't need to pass IPSEC, only UDP and TCP. This is why we designed WinGate VPN like this, to make it as friendly to any gateway as possible.

These 2 employees could have routing conflicts with the VPN. Usually DSL / NAT modems allow you to change the IP addresses that are used on the local network however.

Adrien