|
[Connectivity] Comcast SMCD3G-BIZ and VPN/TunnelI had the business service installed and was wondering if there's a way to put the SMCD3G-BIZ into a "bridged mode"....
I have a cisco 87X that I use on my old ISP (that isp was gracious enough to put their modem into bridged mode). It allows me to create a site-to-site VPN with my HQ. I can't get this to work with this connection. I've called the tech support but they were no help. All I need to know is how to bypass their fw/router and send everything to my mine...
any help would be appreciated... |
|
JohnInSJ Premium Member join:2003-09-22 Aptos, CA |
JohnInSJ
Premium Member
2009-Aug-6 8:25 pm
well, hm.. googled around for a manual and came up empty.
I assume you've got static IPs (otherwise bridge mode makes no sense)
SMC usually lets you do passthru on the statics which should be more then good enough for VPN. You *might* need to enable something else in the modem to get vpn working (for example the braindead smc8014 has hidden features you can get to with the admin login, which your tech should know and won't tell you, which enable vpn if you're using NAT... not needed in 'true static' mode.) |
|
Khaos-K-OS- Premium Member join:2007-03-12 West Palm Beach, FL |
to garris_b2000
i don't think it can go into bridge mode but it can be set up with either firewall disabled so you can vpn into your network or ports can be fowarded if you do not have an additional router/firewall. It's just like a residential modem except it can do dhcp,firewalling,dmz,port forwarding all in one unit. I normally disable the firewalls when the business already has a sonicwall or such. Are you paying for a static ip? |
|
|
to garris_b2000
I was told if you have static ips and pretty much disable everything in the modem, you are in bridge mode.
There is a bug in the modem in which Comcast assured me they will address in the next firmware release. We have the 50/10 tier and running with the SMC8014 until the firmware is released. |
|
lart join:2002-08-19 united state |
to garris_b2000
There is a way to enable 1:1 nat and there is also a way to set a dmz host. You might need to use the admin password if you search around you'll find it. I'll give you a hint the username is mso and the password is something you should not 4 get. |
|
Mellow Premium Member join:2001-11-16 Salisbury, MD |
to garris_b2000
I was going to say, VPN works fine with the SMC8014. Now they have to work all the bugs out of the D3 equipment. |
|
|
to Khaos
Yes.... I am paying for a static ip...
So once I disable the firewall, Do I put the Public Address static IP on the router or do I still have to use their gui to point it to an internal ip? |
|
garris_b2000 |
to kingdomware
Thanks for the head's up on the bug... That may explain why I'm having so much trouble... Like I said, the tech I had seemed pretty lost... |
|
lgkahn7 Premium Member join:2005-02-15 Londonderry, NH 2 edits |
lgkahn7
Premium Member
2009-Aug-11 4:55 pm
mine is working ok i have a dd-wrt 610 box setup in bridging mode as a bridging firewall between the smc biz and my local computers and the routers seems to konw about my 14 static ips
ie Initilization Procedure Vendor Name SMC Networks Hardware Version 1.01 Serial Number Firmware Version 1.1.0.29-CCR Operating Mode RG System Uptime 048 days 22h:07m:00s Date Aug-11-2009 Time 15:54:18
Internet Settings Gateway MAC Address WAN MAC Address WAN DHCP IP Address xx.xx.xx.51 WAN DHCP Subnet Mask 255.255.xxx.x WAN DHCP Default Gateway xx.xx.xx.1 WAN Internet IP Address xx.xx.xx.126 DNS (primary) xx.xx.xx.xxx DNS (secondary) xx.xx.xx.xxx DHCP Time Remaining 1192135h:17m:08s Date Aug-11-2009 Static IP Block xx.xx.xx.126/28 Local Settings Gateway IP Address = Subnet Mask 255.255.255.0 DHCP Server Enabled IP Range (start) 10.1= IP Range (end) 10.=
Site Navigation MainFeature SettingsAdministrationLANFirewallGateway SummaryHelp
Initilization Procedure Initialize Hardware Complete Acquire Downstream Channel Complete Upstream Ranging Complete DHCP Bound Complete Set Time-of-Day Complete Download CM Configuration File Complete Registration Complete TRAFFIC ENABLED Downstream Channel Downstream Frequency 608.999634 MHz 615.000977 MHz Lock Status Locked Locked Not locked Not locked Modulation 256 QAM 256 QAM Symbol Rate 5.360537Msym/sec 5.360537Msym/sec Downstream Power -5.187741 dBmV -5.043001 dBmV SNR 35.973 dB 36.175 dB Upstream Channel Upstream Frequency 32200000 Hz 10000000 Hz Lock Status Locked Locked Not locked Not locked Modulation 32QAM ERR Symbol Rate 5120 KSym/sec 5120 KSym/sec Upstream Power 48.7500 dBmV 13.0000 dBmV Channel ID 4 0
Site Navigation MainFeature SettingsAdministrationLANFirewallGateway SummaryHelp
so apparently all is ok with static ips.. i had to upgrade my bridging f/w router to the new linksys to get the full 50 meg download with a firewall enabled.. i regularly get 51 meg down when testing with speedtest.net and washington dc..
now if only i could find the admin password so i could enable snmp monitoring.. bummer
also there is an option under firewall with the cusadmin login that i set and that should get you going with static ips ie
Firewall Options Firewall Options Disable Firewall for True Static IP Subnet Only Disable Gateway Smart Packet Detection Disable Ping on WAN Interface |
|
|
Hi lgkahn,
You might want to remove your MAC addresses from the post. They can be cloned. |
|
|
doofoo join:2002-01-21 Upper Marlboro, MD |
to garris_b2000
Please let me know if you find the admin password via email. I had it at one point for a client in virginia but can't recall where I wrote it down. Not sure if it's different for every deployment either.
Just got 50M/10M service installed here, but am only seeing QAM16 on upstream, so it seems to struggle to get 10M up. Is this normal? |
|
|
I would post in the direct forum and they will bump you to 32 or 64qam. |
|
doofoo join:2002-01-21 Upper Marlboro, MD |
doofoo
Member
2009-Aug-12 9:08 am
said by NathanO:I would post in the direct forum and they will bump you to 32 or 64qam. Giving that a shot now.. Would like to enable SNMP on the router though as well, but guess I'll settle for running snmp on the Juniper SRX behind it. Hopefully this upstream QAM change will speed up my upstrea. Right now it struggles to even do 5-6mbit/s. |
|
joako Premium Member join:2000-09-07 /dev/null |
to garris_b2000
Those SMC devices are utter crap -- and the tech support isn't any better -- I had one tech disable DHCP on one thinking it would magically bridge the device.
Short answer: return the SMC and replace it with a Motorola cable modem. |
|
JDCynicalAlways Mount A Scratch Monkey join:2002-01-09 Beaverton, OR |
said by joako:Short answer: return the SMC and replace it with a Motorola cable modem. Unless you know the settings Comcast uses for RIP, that's not an option for a business account with statics. If it was, I would have yanked my SMC a long time ago and replaced it with something more reliable. Hey Comcast, wanna make me a guinea pig? I'd love to be able to do this! |
|
bclbob join:2000-06-23 Oak Park, IL |
bclbob
Member
2009-Aug-13 7:45 pm
me too.. ! I got a perfectly nice cisco router I'd love to just bridge |
|
lgkahn7 Premium Member join:2005-02-15 Londonderry, NH |
lgkahn7
Premium Member
2009-Aug-21 2:23 pm
it will not let me edit the post.. to remove mac please advise |
|
cabanaDepartment of Adjustments Mod join:2000-07-07 New York, NY |
cabana
Mod
2009-Aug-21 2:35 pm
said by lgkahn7:it will not let me edit the post.. to remove mac please advise Private MAC info removed as per request. |
|