After having problems getting a Vodafone Sure Signal to connect through a Draytek 2850vn via a fibre broadband connection I thought I'd pass on my findings in the hope it may help someone.
Firstly I have found it NOT necessary to configure the following options as suggested by some:-
1.) Port Redirection/Open Ports [NAT > Port Redirection/Open Ports]
2.) Disable VPN Services [VPN and Remote Access > Remote Access Control]
3.) Configure the VSS as the DMZ Host [NAT > DMZ Host]
4.) Enable UPnP [Applications > UPnP]
5.) Create firewall filters [Firewall > Filter Setup]
The below are the relevant settings that I have currently configured to allow VSS to work:-
1.) Set MTU to 1492 [Telnet to the Draytek and issue this command wan mtu 1492]
2.) Enable Strict Security Firewall [Firewall > General Setup]
3.) Accept large incoming fragmented UDP.......... [Firewall > General Setup]
4.) Untick Enable UDP flood defence [Firewall > DoS Defence]
5.) I have configured the VSS with a reserved IP address but this probably isn't necessary [LAN > Bind IP to MAC]
When the unit is turned on I get the below lights displayed (in order):-
1.) Solid RED power
2.) Solid RED power and WHITE flashing internet
3.) Flashing RED power and solid ORANGE in service and in use
4.) Solid RED power and WHITE flashing internet
5.) Solid RED power and solid WHITE internet and in service (also solid WHITE in use if the VSS is actually in use)
It takes 5 minutes or so from turning the unit on before it is ready.
If the unit still does not connect then look at your firewall filters. I had a filter at the top of the list that
blocked all traffic from WAN to LAN unless there was another match. Despite adding a further rule to allow ALL traffic to the VSS I still couldn't get it to connect. I gave it some thought and decided that the block inbound rule wasn't really required as I'm using NAT. I disabled this rule and the VSS promptly connected:-)
If anyone finds any problems with the above or has anything more to suggest please post a reply.
