Re: Setting Up a VPN

From: Steven L Umbach (n9rou_at_nsattbi.com)
Date: 07/02/03 

Date: Wed, 02 Jul 2003 04:24:00 GMT

      In a nutshell you will need to enable rras on your server and
configure it to hand out tcp/ip addresses if it is not already acting as a
dhcp router - at least ten. The user accounts on the server will need to be
configured to be allowed to use dial up connections. Your nat router will
need to be configured to forward port 1723 to the rras/vpn server and allow
pptp passthrough or protocol 47 gre. You will probably want to use pptp
since nat [until recently] does not work with l2tp and you will also need to
issue machine certificates by default which will require a Certificate
Authority. From my experience not all of the NAT routers will work in front
of a vpn server - my Linksys does. You then need to configure a vpn client
connectoid on the remote vpn computers to dial into/access the internet to
reach your public tcp/ip address that is configured as the "wan" ip address
of your nat router. If you have a dynamic tcp/ip address assigned by your
ISP, it makes it difficult for vpn clients to connect to your network
because it will change from time to time. A statcic/fixed ip address is the
way to go. See links for more detailed info. Test your W2K server after you
set it up for rras/vpn on your local lan FIRST, by creating a vpn client on
the lan and put the lan address for the W2K rras/vpn server in the vpn
client connectoid. --- Steve

http://tinyurl.com/51sy
http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B810761
http://www.net.ttu.edu/docs/vpn/win2kvpn.htm -- Example of setting up
client, ignore name they use - substitute your public ip address.

"Susan Stephens" <star_step@hotmail.com> wrote in message
news:071a01c34048$f9972100$a301280a@phx.gbl...
> I am trying to setup a VPN on a Window 2000 Server. We
> have a router which has NAT configured. How do I
> configure VPN so that I can access the server from the
> outside through the router.
> Thanks for your help,
> Susan Stephens

Relevant Pages

  • Re: VPN Advice...do I need a purchased static ip address on the external interface?
    ... >> Server then that server must have a been assigned a purchased static IP ... >> if I was to try and use Windows 2000 SBS as the server for the VPN, ... >> If I used a router instead then the router would have this purchased IP ... > supports dynamic dns, then users connect to the dynamic dns name and ...
    (comp.dcom.vpn)
  • RE: VPN
    ... Run CEICW on SBS ... You have to rerun the CEICW to make sure your SBS 2003 server have right ... Click Next, click Enable Remote Access, click to select the VPN Access ... Please ensure the VPN client computers' DNS and WINS are your SBS ...
    (microsoft.public.windows.server.sbs)
  • Re: DNS and NetBIOS names not resolving over a PPTP VPN using RRAS
    ... by all VPN clients. ... What if the VPN server has more than one network ... I have a separate DHCP server on the remote ... To assign the DNS and WINS to a VPN client for name resolution, ...
    (microsoft.public.windows.server.networking)
  • Re: vpn probl
    ... not to vpn server, so when workstations needed to reply to the ping requests ... they were trying to respond though their gateway that was the adsl router ... static route 172.16.x..x pointing to vpn remote router in rras, ...
    (microsoft.public.windows.server.networking)
  • Re: Problem
    ... telephoned the office where the server was and asked her to re-boot the ... Once I saw the config of the VPN router there, I knew what to do on the ... on the remote site and see if they have the connection manager installed. ...
    (microsoft.public.windows.server.sbs)