Re: w2k3 vpn server IP address(ES) ... ??

From: Steven Wong (steven.wong_at_figtreesys.com.au)
Date: 03/29/04 

Date: Mon, 29 Mar 2004 11:18:47 +1000

so .. I have to have a DHCP server somewhere or use the built-in IP address
pool .. ?
That's still OK.
I would like to ask one more question.
I got some filtering rules setup on the switch port connected to the VPN
server

eg.

internet <-------> VPN server <------> 10/100 switch <-----> DHCP server
                                                        ^
                                                         incoming filtering
apply (it's a cisco 2970 series switch)

I have permitted incoming UDP bootpc and UDP botopc
but the Internal interface were unable to obtain IP when the first client
connect via PPTP from the internet.
If I disable the filtering on that particular port, it works fine when the
first client connect, and the second client can
also obtain IP even I re-enable the filtering on the port.

I have tried to permit all TCP/UDP traffice into that port from the VPN
internal IP address but it was
successful.

Anyone know what do I have to do so I can enable filtering ?
or I am doing something really wrong here ??
Thanks a lot

Steven

"Bill Grant" <not.available@online> wrote in message
news:une6J75EEHA.3424@tk2msftngp13.phx.gbl...
> No. That interface receives its IP when your first remote client
> connects. It is the server end of the connection. It receives its IP in
the
> same way as the remote clients -ie from the pool of addresses used for
> remote access.
>
> "Steven Wong" <steven.wong@figtreesys.com.au> wrote in message
> news:#3peCdtEEHA.2052@TK2MSFTNGP11.phx.gbl...
> > I see .. thanks
> > So, can I assign static IP to that Internal Interface ?
> >
> > Steven
> >
> > "Marc Reynolds [MSFT]" <marcrey@online.microsoft.com> wrote in message
> > news:u95HUJtEEHA.2628@TK2MSFTNGP11.phx.gbl...
> > > See 241398 RRAS Console Displays an "Internal" Routing Interface
> > > http://support.microsoft.com/?id=241398
> > >
> > > --
> > >
> > > Thanks,
> > > Marc Reynolds
> > > Microsoft Technical Support
> > >
> > > This posting is provided "AS IS" with no warranties, and confers no
> > rights.
> > >
> > >
> > > "Steven Wong" <steven.wong@figtreesys.com.au> wrote in message
> > > news:OgtiqwsEEHA.1376@TK2MSFTNGP10.phx.gbl...
> > > > Hi,
> > > >
> > > > When I go to Routing and remote access -> IP routing -> general,
> > > > I have 4 items on the right panel
> > > >
> > > > 1) loopback 127.0.0.1
> > > > 2) Local Area Connection - Internal 192.168.1.100(Static)
> > > > 3) Local Area Connection - External 209.21.23.19(Static)
> > > > 4) Internal - Internal 192.168.1.201(DHCP)
> > > >
> > > > May I ask the use of the 4th items ?
> > > > because if the 4th item can't get an IP from the DHCP,
> > > > it will be assigned a 169.x.x.x address and all the vpn
> > > > client will have the following errors while connecting to the VPN
> > server.
> > > >
> > > > 1) TCP/IP CP reported error 733: the PPP control protocol for this
> > network
> > > > protocol is not available on the server.
> > > > 2) TCP/IP CP reported error 736: The remote computer terminated the
> > > control
> > > > protocol.
> > > >
> > > > another question, currently PPTP is working fine on this VPN server
> > > > (provided the above is
> > > > working on the server). Now, I would like to configure the server
for
> > L2TP
> > > > VPN connection.
> > > > I have read some articles but I am still really confused about how
it
> > > works
> > > > ...
> > > > can anyone kindly tell me where can I find some clear explanation
and
> > > > configuration
> > > > to enable L2TP on my w2k3 VPN server ?
> > > > Thanks a lot
> > > >
> > > > Steven
> > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> >
>
>

Relevant Pages

  • Re: Unable to print to networked printer - get access denied messa
    ... Check the permissions on the server assuming the client has a true RPC ... How is the Standard TCP/IP port configured for the device? ...
    (microsoft.public.windowsxp.print_fax)
  • Re: interfaces lo:1 lo:2 lo:3? (for remote ssh tunnels)
    ... That's the problem tunneling (port forwarding) solves. ... >>can't get past the client firewall. ... > I don't understand why the server would be making the ... server initiates another connection to the client -- in this ...
    (Debian-User)
  • Re: Remote Connection Issue
    ... through port number 3389 and a workstation on the LAN through port number ... I understand that you want to allow a LAN client ... and you have configured server publishing rule ... > By default Terminal Server and Windows 2000 Terminal Services uses TCP ...
    (microsoft.public.windows.server.sbs)
  • Re: RealVNC
    ... Default listening port for RealVNC server that runs on the machine on which ... Then there is default Java listening port on port 5800 on the client machine ...
    (microsoft.public.windows.server.sbs)
  • Re: Redirecting data sent to a local printer to another host and port on the network
    ... All client workstations have access to the ... simply redirecting netcat traffic on port 9100 to port 515 on ... Only LPR clients talk to LPD print server daemons. ... >workstation at the branch site where the print job originated. ...
    (comp.unix.sco.misc)