dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
26211
share rss forum feed

garris_b2000

join:2004-03-17
Antelope, CA

[Connectivity] Comcast SMCD3G-BIZ and VPN/Tunnel

I had the business service installed and was wondering if there's a way to put the SMCD3G-BIZ into a "bridged mode"....

I have a cisco 87X that I use on my old ISP (that isp was gracious enough to put their modem into bridged mode). It allows me to create a site-to-site VPN with my HQ. I can't get this to work with this connection. I've called the tech support but they were no help. All I need to know is how to bypass their fw/router and send everything to my mine...

any help would be appreciated...



JohnInSJ
Premium
join:2003-09-22
Aptos, CA

well, hm.. googled around for a manual and came up empty.

I assume you've got static IPs (otherwise bridge mode makes no sense)

SMC usually lets you do passthru on the statics which should be more then good enough for VPN. You *might* need to enable something else in the modem to get vpn working (for example the braindead smc8014 has hidden features you can get to with the admin login, which your tech should know and won't tell you, which enable vpn if you're using NAT... not needed in 'true static' mode.)
--
My place : »www.schettino.us



Khaos
-K-OS-
Premium
join:2007-03-12
West Palm Beach, FL
reply to garris_b2000

i don't think it can go into bridge mode but it can be set up with either firewall disabled so you can vpn into your network or ports can be fowarded if you do not have an additional router/firewall. It's just like a residential modem except it can do dhcp,firewalling,dmz,port forwarding all in one unit. I normally disable the firewalls when the business already has a sonicwall or such. Are you paying for a static ip?
--
Ultimate Malware Protection!!

Free Windows Cleaning!!


kingdomware

join:2000-09-23
Waldorf, MD
reply to garris_b2000

I was told if you have static ips and pretty much disable everything in the modem, you are in bridge mode.

There is a bug in the modem in which Comcast assured me they will address in the next firmware release. We have the 50/10 tier and running with the SMC8014 until the firmware is released.


lart

join:2002-08-19
united state
reply to garris_b2000

There is a way to enable 1:1 nat and there is also a way to set a dmz host. You might need to use the admin password if you search around you'll find it. I'll give you a hint the username is mso and the password is something you should not 4 get.



Mellow
Premium
join:2001-11-16
Salisbury, MD
reply to garris_b2000

I was going to say, VPN works fine with the SMC8014. Now they have to work all the bugs out of the D3 equipment.


garris_b2000

join:2004-03-17
Antelope, CA
reply to Khaos

Yes.... I am paying for a static ip...

So once I disable the firewall, Do I put the Public Address static IP on the router or do I still have to use their gui to point it to an internal ip?


garris_b2000

join:2004-03-17
Antelope, CA
reply to kingdomware

Thanks for the head's up on the bug... That may explain why I'm having so much trouble... Like I said, the tech I had seemed pretty lost...


lgkahn
Premium
join:2005-02-15
Londonderry, NH

2 edits

mine is working ok i have a dd-wrt 610 box setup in bridging mode as a bridging firewall between the smc biz and my local computers and the routers seems to konw about my 14 static ips

ie
Initilization Procedure
Vendor Name SMC Networks
Hardware Version 1.01
Serial Number
Firmware Version 1.1.0.29-CCR
Operating Mode RG
System Uptime 048 days 22h:07m:00s
Date Aug-11-2009
Time 15:54:18

Internet Settings
Gateway MAC Address
WAN MAC Address
WAN DHCP IP Address xx.xx.xx.51
WAN DHCP Subnet Mask 255.255.xxx.x
WAN DHCP Default Gateway xx.xx.xx.1
WAN Internet IP Address xx.xx.xx.126
DNS (primary) xx.xx.xx.xxx
DNS (secondary) xx.xx.xx.xxx
DHCP Time Remaining 1192135h:17m:08s
Date Aug-11-2009
Static IP Block xx.xx.xx.126/28
Local Settings
Gateway IP Address =
Subnet Mask 255.255.255.0
DHCP Server Enabled
IP Range (start) 10.1=
IP Range (end) 10.=

Site Navigation
MainFeature SettingsAdministrationLANFirewallGateway SummaryHelp

Initilization Procedure
Initialize Hardware Complete
Acquire Downstream Channel Complete
Upstream Ranging Complete
DHCP Bound Complete
Set Time-of-Day Complete
Download CM Configuration File Complete
Registration Complete
TRAFFIC ENABLED
Downstream Channel
Downstream Frequency 608.999634 MHz 615.000977 MHz
Lock Status Locked Locked Not locked Not locked
Modulation 256 QAM 256 QAM
Symbol Rate 5.360537Msym/sec 5.360537Msym/sec
Downstream Power -5.187741 dBmV -5.043001 dBmV
SNR 35.973 dB 36.175 dB
Upstream Channel
Upstream Frequency 32200000 Hz 10000000 Hz
Lock Status Locked Locked Not locked Not locked
Modulation 32QAM ERR
Symbol Rate 5120 KSym/sec 5120 KSym/sec
Upstream Power 48.7500 dBmV 13.0000 dBmV
Channel ID 4 0

Site Navigation
MainFeature SettingsAdministrationLANFirewallGateway SummaryHelp

so apparently all is ok with static ips.. i had to upgrade my bridging f/w router to the new linksys to get the full 50 meg download with a firewall enabled.. i regularly get 51 meg down when testing with speedtest.net and washington dc..

now if only i could find the admin password so i could enable snmp monitoring.. bummer

also there is an option under firewall with the cusadmin login that i set and that should get you going with static ips ie

Firewall Options
Firewall Options Disable Firewall for True Static IP Subnet Only
Disable Gateway Smart Packet Detection
Disable Ping on WAN Interface


kingdomware

join:2000-09-23
Waldorf, MD

Hi lgkahn,

You might want to remove your MAC addresses from the post. They can be cloned.


doofoo

join:2002-01-21
Upper Marlboro, MD
reply to garris_b2000

Please let me know if you find the admin password via email. I had it at one point for a client in virginia but can't recall where I wrote it down. Not sure if it's different for every deployment either.

Just got 50M/10M service installed here, but am only seeing QAM16 on upstream, so it seems to struggle to get 10M up. Is this normal?



NathanO

join:2008-08-21
Moorestown, NJ

I would post in the direct forum and they will bump you to 32 or 64qam.


doofoo

join:2002-01-21
Upper Marlboro, MD

said by NathanO:

I would post in the direct forum and they will bump you to 32 or 64qam.
Giving that a shot now.. Would like to enable SNMP on the router though as well, but guess I'll settle for running snmp on the Juniper SRX behind it.

Hopefully this upstream QAM change will speed up my upstrea. Right now it struggles to even do 5-6mbit/s.


joako
Premium
join:2000-09-07
/dev/null
kudos:6
reply to garris_b2000

Those SMC devices are utter crap -- and the tech support isn't any better -- I had one tech disable DHCP on one thinking it would magically bridge the device.

Short answer: return the SMC and replace it with a Motorola cable modem.
--
PRescott7-2097



JTC
Always Mount A Scratch Monkey

join:2002-01-09
USA

said by joako:

Short answer: return the SMC and replace it with a Motorola cable modem.
Unless you know the settings Comcast uses for RIP, that's not an option for a business account with statics.

If it was, I would have yanked my SMC a long time ago and replaced it with something more reliable.

Hey Comcast, wanna make me a guinea pig? I'd love to be able to do this!
--
All hardware sucks, all software sucks, some just suck more than others

bclbob

join:2000-06-23
Oak Park, IL

me too.. ! I got a perfectly nice cisco router I'd love to just bridge


lgkahn
Premium
join:2005-02-15
Londonderry, NH
reply to lgkahn

it will not let me edit the post.. to remove mac please advise



cabana
Department of Adjustments
Premium,Mod
join:2000-07-07
New York, NY

said by lgkahn:

it will not let me edit the post.. to remove mac please advise
Private MAC info removed as per request.