Amahi Forums

Hello, I'm hoping someone could help me.
I'm a newbie to the whole server thing. My issue is that I can't seem to get VPN to work. I work from home and have hardware that I need to go through, as my company pays for my internet connection and I also VPN into work server. My setup is as follows.......

Cable Modem to Cymtec SOHO box. From SOHO box to a Cisco ASA box. (per company, I'm using an open port that is not on there 10.#.#.#)
from ASA box to a linksys router (my personal and have dhcp turned off). 2 lines out of the router......1) to Amahi server...........2) to Dell PowerConnect 2016 with all other computers and network printers into the Dell PowerConnect.

Everything works as far as internet connection and using network printer, but I can't VPN into the Amahi server.
The ASA box is assigning me an IP of 172.#.#.# (which my company made a static number for me and told me to make my server that static number). I have my router set as gateway and a 192.168.4.1 with Amahi server being 192.168.4.10. I noticed on the login page of the Amahi site, that my IP from Amahi (i assume thats where its coming from) is 173.#.#.#.

Right now I'm using the HDA connect client for windows 7 and from my work computer, being its not on the same network, and it just stops at the 173.#.#.# number when trying to connect.

I'm not sure what to do with the 172.#.#.# static IP that the company told me to use for the server IP. I changed this in the router (as i had dhcp selected before) and it didn't make a difference. I do have UDP 1194 forwarded in the router to 192.168.4.10 as well.

Could someone tell me if this whole setup is even possible, and if so, please offer some help.

Thank you!

not sure if i understand what u mean. So therefor ill ask :

U have a VPN connection running because of ur company and through this connection u are trying to build a second VPN to ur Amahi Server?

Hello Blackbird,
Yes and no. I do have a VPN connection to the company, going through the ASA box on a port that they have designated. However, the company left 2 ports on the left hand side of that ASA box for me to plug my home computer into. This port is open and not really on their network address. My work computer gets a 10.#.#.# number from the company. My home computer plugged into the open port is getting a 172.#.#.# IP that the company is giving me. This ASA box is a firewall as well as VPN hardware. I don't understand it all either, but I talked to them the other day and told them that I couldn't set up a home VPN for my server and they sent back an email telling me to use 172.30.#.# as a static IP as they made that IP for me, and that is to be for the server IP. The IT department at the company I work for does everything there in St. Louis and it just works. Not to familiar with the hardware stuff and how they control it.

I hope this makes more sense and thank you for replying.

Cable Modem to Cymtec SOHO box. From SOHO box to a Cisco ASA box. (per company, I'm using an open port that is not on there 10.#.#.#)
from ASA box to a linksys router (my personal and have dhcp turned off). 2 lines out of the router......1) to Amahi server...........2) to Dell PowerConnect 2016 with all other computers and network printers into the Dell PowerConnect.

Umm.. Ok... Wow...

From what i can gather you Have:

Cable Modem --> Cymtec SOHO --> Cisco ASA --> Port1 Work PC
________________________________________--> Port2 Linksys Router --> other pc

I would suggest based on my limited knowledge of these Devices The Cymtec & Cisco ASA are both Security centered devices. If you were to get the Amahi VPN up and running you would need to get a port forwarded from both of the other devices.

I would start at the Linksys router and work your way back to the cable modem forwarding a port from say the Cisco ASA --> Linksys with the ip being that of the linksys router with the VPN port of 1194.

and so on, untill you get a vpn connection.

If you have access to the configuration of the Cymtec and Cisco ASA try it yourself otherwise ask tech support to forward it for you.

Being that the company you work for has these two devices for VPN, means that I do not think they would be happy or willing to allow changes to these security devices.

It seems overkill just for a VPN, But that's just my opinion

Try the Network trouble shooter in the wiki http://wiki.amahi.org/index.php/Network_troubleshooting