Re: Router to ISA 2K VPN Problem
From: Phillip Windell (_at_.)
Date: 03/22/05
- Next message: Peter Storkey: "ISA Server 2004 IPSec Identifier"
- Previous message: Phillip Windell: "Re: One to One NAT and VPN"
- In reply to: AntCat: "Router to ISA 2K VPN Problem"
- Next in thread: AntCat: "Re: Router to ISA 2K VPN Problem"
- Reply: AntCat: "Re: Router to ISA 2K VPN Problem"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 22 Mar 2005 10:14:37 -0600
You probably won't be able to use the ISA. The way it would be done, if it
worked, would be to used "VPN Pass-through" (or whatever they call it in
their dictionary) on the Draytek Device at the SBS location. This would pass
the entire Tunnel back to the ISA (assuming a 2-Nic ISA running all
features). You would then setup a site-to-site vpn between the ISA and the
remote Draytek,..which may not be possible. ISA can work directly with some
of thrid party devices but may not work with all of them.
Another solution is to place the Drayteck and the SBS/ISA "side-by-side"
instead of one behind the other so they each work with the Internet
independent of each other, assuming you have the public IP#s to do that.
Then the two Draytek device would connect directly to each other and
establish the VPN that way without involving the SBS/ISA at all.
-- Phillip Windell [MCP, MVP, CCNA] www.wandtv.com "AntCat" <AntCat@discussions.microsoft.com> wrote in message news:C7FCA488-8AF3-4742-966B-A7E96897E379@microsoft.com... > I am trying to setup a site to site VPN from an ADSL Draytek 2600 router > (Remote site with Static Public IP Address, DHCP server for remote LAN) to > our SBS2K server (Head Office with different Static Public IP Address), which > is behind another ADSL Draytek Router. > > I have run the Local ISA VPN Server Wizard on the SBS and have set it up > that the SBS can both initiate a connection to the remote Draytek router as > well as act as a server from the router. I have setup a LAN to LAN profile on > the Draytek router to only Dial-Out at the moment with no timeout. The > username for connecting to the VPN Demand Dial Interface is the user that the > SBS VPN wizard created but I had to reset the password for the username > within Active Directory. The Demand-Dial interface on the SBS is set to a > persistent connection. > > The LAN IP address of the router is different to the SBS. > > When I try and 'Dial' the VPN link to the SBS the VPN is not connecting and > I keep on getting the following 2 system event errors in the SBS system log > and am not sure why ? In the remote access log the SBS knows that the remote > router is trying to setup a VPN link but is being disconnected. > > Source: Remote Access > Event Id: 20050 > Description: > The user OURDOMAINNAME\username connected to port VPN3-3 has been > disconnected because no network protocols were successfully negotiated. > > Source: Remote Access > Event Id: 20049 > Description: > The user connected to port VPN3-3 has been disconnected because the > authentication process did not complete within the required amount of time. > > Any help would be greatly appreciated. > > Thanks in advance. > Antony >
- Next message: Peter Storkey: "ISA Server 2004 IPSec Identifier"
- Previous message: Phillip Windell: "Re: One to One NAT and VPN"
- In reply to: AntCat: "Router to ISA 2K VPN Problem"
- Next in thread: AntCat: "Re: Router to ISA 2K VPN Problem"
- Reply: AntCat: "Re: Router to ISA 2K VPN Problem"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
