Re: Windows 2003 server and VPN: Security(?)

---

• From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxx>
• Date: Sat, 17 Dec 2005 15:10:28 -0600

---

Mike raises some real concerns but it is possible to setup secure remote
access. Since you are using Windows 2003 Server you could consider a VPN
using l2tp as the only allowed VPN method. L2tp requires that both the VPN
server and VPN client have computer certificates to use for authentication.
If you have only one Windows 2003 Server and it is a domain controller then
using it as a VPN server also can pose some challenges however. It is also
possible to use Remote Desktop over the internet via port 3389 TCP [or
other] though I prefer VPN. You guys have to weigh the pros and cons of
security risks versus convenience and productivity to determine a solution.
It is also possible to provide remote access to only specific computers on
your LAN that could be isolated from the rest of your network. --- Steve


"Mark" <mark@xxxxxxxxxxxxxxx> wrote in message
news:OuhVLaoAGHA.2704@xxxxxxxxxxxxxxxxxxxxxxx
> Hi, at work we would like to move towards remote access to employees via a
> VPN.
>
> Now, our admin seems reluctant citing security as an issue which is fair
> enough.
>
> Given that our employees are on static IP addresses external and our
> network is behind a firewall surely we could punch a single hole in the
> fireall and give access to *only* that IP address? Once through the
> firewall, the user would still have the Windows 2003 security so we would
> have at least two levels of security.
>
> How safe is setting up a VPN network under Windows 2003?
>
> TIA
> Marcus
>
>


.

---

• Follow-Ups:
  • Re: Windows 2003 server and VPN: Security(?)
    • From: Mark

• References:
  • Windows 2003 server and VPN: Security(?)
    • From: Mark

• Prev by Date: Re: Hidden Users
• Next by Date: Re: Windows 2003 server and VPN: Security(?)
• Previous by thread: Re: Windows 2003 server and VPN: Security(?)
• Next by thread: Re: Windows 2003 server and VPN: Security(?)
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Remote Access and ISA Server in SBS 2003? ... I am glad to hear the Remote Access Wizard is working fine now. ... there is no difference in VPN between SBS 4.5 and SBS ... Error Message: VPN Connection Error 800: Unable to Establish Connection ... the external NIC of the SBS Server. ... (microsoft.public.windows.server.sbs) Re: upgrading frm XP Home to Pro ... Why do you think you need Windows XP Professional? ... won't and we need to upgrade all the computers to Pro. ... You bought a server to 'network your computers' and so you can ... software) would give you the same abilities as 'Remote Desktop' ... (microsoft.public.windowsxp.general) RE: SBS 2003 sudden services problem over router based vpn ... I understand that your remote cannot receive POP3 emails through VPN ... SBS Server through routers. ... (microsoft.public.windows.server.sbs) RE: VPN Configuration error ... Remote Access wizard to configure VPN. ... How to move the client programs folder to another location in Windows Small ... or if the SBS SP1 did not finish the installation. ... On the SBS server, click Start, click Run, type "regedit" (without the ... (microsoft.public.windows.server.sbs) Re: VPN with SBS Premuim ... Windows 2003 SP2 networking issues, and then re-ran the CEICW again this time ... I understand that after installing ISA 2004 on the SBS ... server, VPN does not work. ... if you installed SP2 on the SBS server without ... (microsoft.public.windows.server.sbs)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.windows.server.security  > 2005-12