Re: vpn connection to a server

From: "Johan Engdahl" <johan@xxxxxxxxxxxx>
Date: Thu, 8 Feb 2007 10:47:46 +0100

You can use VLAN tagging if you have a NIC that supports it. You can also
use the rulebase to control which servers your VPN clients should access.

--
----------------------------------------------------------------------------------------------------------------------------
Johan Engdahl
CCSA, CCSE, CCA, MCP | johan AT firewall1 DOT nu | http://www.firewall1.nu

"Fadoul" <fadhelbb@xxxxxxx> wrote in message
news:uljR5DuSHHA.3428@xxxxxxxxxxxxxxxxxxxxxxx

Hello

I'am looking for a vpn solution which allow access to a server in my DMZ
and only to this server,i don't know if ISA + L2TP MS RAS can do that ? I
think about playing with VLAN too to allow that.
My goal is to give a vpn access to only one server and not to the entire
dmz subnet in which i have many others servers. I think that checkpoint
can do that too (vlan, checkpoint interface in this vlan with the server
in this vlan).
Externals Clients will be able to send and receives files in netbios,
connect to tse.. to this server

I know that adding a nic on a ISA server and configure the firewall with
this nic and this dedicated subnet can do that, but tomorrow if i want to
mulitply this configuration i don"t want each time to add NICs to my
firewall for each new subnet/server... :)
I thought about managing that with ipsec but the problem is that the
server can be installed with Linux too...

To complex the situation, if it is possible, this server will need to send
mails, and the best situation would be that this server can access to my
smtp server in my DMZ, otherwise i will have to allow him to send mails to
external smtp servers... So i need too (but it's not an obligation as i
said) to isolate this server but to allow some communications on specific
ports (smtp) to others servers to others vlans

In advance Thks for advices
Fafa

References:
- vpn connection to a server
  - From: Fadoul

Prev by Date: vpn connection to a server
Next by Date: ISA Failover to Alternate Location
Previous by thread: vpn connection to a server
Next by thread: ISA Failover to Alternate Location
Index(es):
- Date
- Thread

Relevant Pages

Re: W2003 VPN Setup
... The server will only ping itself. ... connection to the Internet. ... Remote users trying to connect to your LAN by VPN will need to connect to ... I have a clean W2003 box with 2 nics. ...
(microsoft.public.windows.server.networking)
Re: Win2K RRAS/VPN Help
... > if you try to configure different gateway settings on the NICs). ... > on the server itself. ... *.201 thru *.225 IPs for VPN clients. ... RRAS using *.200 and clients getting *.200+ IPs. ...
(microsoft.public.win2000.ras_routing)
Re: VPN/ Domain
... So once more you have a multihomed server. ... it is not recommended to enable two NICs in a DC. ... setup VPN using just one NIC and you need to do NAT or port forwarding. ... VPN SetupHow to setup VPN server on 2003 server How to setup Windows ...
(microsoft.public.windows.server.networking)
Re: one or two NIC cards
... VPN configuration if you have 1 NIC or 2 NICs on SBS. ... server on the Web Server Certificate page. ...
(microsoft.public.windows.server.sbs)
RE: VPN
... we can enable VPN on SBS 2003 R2 with single NIC. ... You have to rerun the CEICW to make sure your SBS 2003 server have right ... |> if you don't have two NICs on the PC running SBS? ...
(microsoft.public.windows.server.sbs)