Re: How To VPN?
From: IBC (spamityspam_at_spam.spam)
Date: 02/06/04
- Next message: Marina Roos [SBS-MVP]: "Re: RRAS will not start in with EventID 20152"
- Previous message: Jeff Middleton [SBS-MVP]: "Re: SBS Dilemma"
- In reply to: Jim Behning: "Re: How To VPN?"
- Next in thread: Kathy: "Re: How To VPN?"
- Reply: Kathy: "Re: How To VPN?"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 6 Feb 2004 09:11:37 -0600
I can get a client connected and authenticated, however thats the end of it.
I can't get to any network shares, (UNC or mapping) I can't VNC, Nothing but
connect. After doing some investigation last night it appears that the
client machine (outside the office) is being served an IP from the subnet of
my External NIC, not the internal LAN. My limited knowledge of TCP/IP is
traffic from one subnet cannot be routed over another, so if the client is
given an IP of 192.168.1.2, it would make sense that it can't see anything
on 10.0.0.0. However, since I know very little about how VPN actually works,
for all I know the VPN 'drivers' (for lack of a better term) convert the
external VPN connection like a NAT packet to the internal subnet.
I'm doing some research right now throught the ISAVPN Deployment pack
articles.....don't know if it will help of just mess things up further. The
articles all assume you have Server2003 now, so I don't know how much of
this applies word for word but I think the concepts should be the same.
Anybody have a spare test network laying around I could have.........;)
"Jim Behning" <jimbehningmvp@atl.mindspring.com> wrote in message
news:ii2620tgglblo0dtq0ssiqqobnmaltfran@4ax.com...
> So what happens? I have not tried it but don't you just enter the ip
> of the workstation and off you go? It may help to have a static ip on
> that workstation so it is easy to find. I rdp to my sbs and apps
> servers inside of a vpn tunnel.
>
> "IBC" <spamityspam@spam.spam> wrote:
>
> >For instance, I am trying to RDP to a users workstation after connecting
via
> >VPN. Trying to use TightVNC to do that.
> >
> >I'd like to start there. No small task, right?
> >
> >;)
> >
> >
> >"Jim Behning" <jimbehningmvp@atl.mindspring.com> wrote in message
> >news:nb5320tq5sro8d26ap3pkjc0h102v0j5i6@4ax.com...
> >> Once you nmake the vpn connection what do you want to do? For my users
> >> they just start-run \\servername to see the server shares. If they
> >> want to Outlook they run through and add the Exchange server. I do not
> >> offer network browsing as all important files belong on the server. I
> >> do offer TS to an application server though. They just open the rdp
> >> client and enter the apps server ip or name.
> >>
> >>
> >> "IBC" <spamityspam@spam.spam> wrote:
> >>
> >> >*Scratches head*
> >> >
> >> >Is there a comprehensive place to learn about the WHOLE VPN setup and
> >usage
> >> >process? I know this sounds ludicris to many of you, but I'm missing
> >> >something that's likely right under my nose.
> >> >
> >> >I followed the "How To" form Smallbizserver.net (thank you again) and
I
> >can
> >> >actually get an outside machine authenticated to that the connection
> >shows
> >> >up in the RRAS manager. But from there I'm lost. Once that client is
> >> >connected, they can't browse the network, can't map drives, can't get
to
> >the
> >> >internet, quite frankly they can't do anything other than sit and say
> >"yeah,
> >> >I'm on".
> >> >
> >> >Now I love google as much as the next admin, but this is really
getting a
> >> >bit silly having to guess at what it is I'm searching for and then
> >reading
> >> >50 unrelated articles on how to piece this thing into working order.
> >Doesn't
> >> >anybody have a step by step style how to? SBS.net is absolutlely
right,
> >> >setting up the server is a no-brainer. But what has to be done AFTER
the
> >> >connection? How are security policies applied?
> >> >
> >> >This is my first venture into the whole VPN thing and I'm feeling like
an
> >> >enormous idiot because everyone else makes VPN'ing sound like its
about
> >as
> >> >difficult as a lightswitch. An example of my frustration:
> >> >
> >>
>
>>http://www.smallbizserver.net/sbs2000/How_do_I_connect_clients_to_the_serv
e
> >r
> >> >_using_VPN.aspx
> >> >
> >> >While I appreciate the start, this doesn't cover any of the inards on
how
> >> >this works. I've come across these:
> >> >
> >> >http://www.isaserver.org/tutorials/dhcpoptions.html
> >> >http://www.isaserver.org/tutorials/VPN_Client_Security_Issues.html
> >> >http://www.isaserver.org/tutorials/vpnclientsecurity2.html
> >> >http://www.isaserver.org/tutorials/pptpeaptlspart1.html
> >>
>
>>http://www.isaserver.org/tutorials/Configuring_the_VPN_Client_and_Server_t
o
> >_
> >> >Support_CertificateBased_PPTP_EAPTLS_Authentication__Part_2.html
> >>
>
>>http://www.isaserver.org/tutorials/Configuring_ISA_Server_For_Inbound_VPN_
C
> >a
> >> >lls.html
> >> >
> >> >and on and on.
> >> >
> >> >Quite Frankly, I have no idea if most of you have done all these steps
> >and
> >> >beyond or what.
> >> >
> >> >Any pointers?
> >> >
> >> >Thanks.
> >> >
> >>
> >> Jim B. SBS MVP
> >> remove the mvp to send email
> >
>
> Jim B. SBS MVP
> remove the mvp to send email
- Next message: Marina Roos [SBS-MVP]: "Re: RRAS will not start in with EventID 20152"
- Previous message: Jeff Middleton [SBS-MVP]: "Re: SBS Dilemma"
- In reply to: Jim Behning: "Re: How To VPN?"
- Next in thread: Kathy: "Re: How To VPN?"
- Reply: Kathy: "Re: How To VPN?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
