The ADSL modem/router contains the DYNDNS address and has it's own firewall. VPN passthrough is enabled. What else needs to be in place? This is my config thus far:
Apex@ApexEdgeRouter:~$ show configuration
interfaces {
ethernet eth0 {
description "Switch Port"
duplex auto
speed auto
}
ethernet eth1 {
description "Switch Port"
duplex auto
speed auto
}
ethernet eth2 {
description "Switch Port"
duplex auto
speed auto
}
ethernet eth3 {
description "Switch Port"
duplex auto
speed auto
}
ethernet eth4 {
description "Switch Port"
duplex auto
speed auto
}
switch switch0 {
address 192.168.1.220/24
mtu 1500
switch-port {
interface eth0 {
}
interface eth1 {
}
interface eth2 {
}
interface eth3 {
}
interface eth4 {
}
vlan-aware disable
}
}
}
service {
gui {
http-port 80
https-port 443
older-ciphers enable
}
ssh {
port 22
protocol-version v2
}
}
system {
conntrack {
expect-table-size 4096
hash-size 4096
table-size 32768
tcp {
half-open-connections 512
loose enable
max-retrans 3
}
}
gateway-address 192.168.1.1
host-name ApexEdgeRouter
login {
user Apex {
authentication {
encrypted-password ****************
}
level admin
}
}
name-server 192.168.1.1
ntp {
server 0.ubnt.pool.ntp.org {
}
server 1.ubnt.pool.ntp.org {
}
server 2.ubnt.pool.ntp.org {
}
server 3.ubnt.pool.ntp.org {
}
}
syslog {
global {
facility all {
level notice
}
facility protocols {
level debug
}
}
}
time-zone UTC
}
vpn {
pptp {
remote-access {
authentication {
local-users {
username alan {
password ****************
}
}
mode local
}
client-ip-pool {
start 192.168.1.221
stop 192.168.1.229
}
mtu 1492
}
}
}
Apex@ApexEdgeRouter:~$