Re: router-to-router VPN

From: Bill Grant (not.available_at_online)
Date: 04/01/04 

Date: Thu, 1 Apr 2004 15:04:51 +1000

   Yes, you must use demand-dial interfaces at both ends of the connection.
When you connect, the "calling" router should use the name of the
demand-dial interface on the answering router as its username. This is to
ensure that the connection is made to the correct interface, so that the
correct static route is added to route traffic back to the subnet behind the
"calling" router. (You may need to read that a couple of times, slowly!)

    If this doesn't happen, routing fails.

"lill" <lillanita@hotmail.com> wrote in message
news:eKc5d2uFEHA.1240@TK2MSFTNGP10.phx.gbl...
> Thank you,
> still the demand-dial interface that should be used for router-to-router
> VPN? When configuring a client-to-server VPN (remote access) I am using
> the Routing and Remote Access wizard.
>
> -Lill
> "Bill Grant" <not.available@online> wrote in message
> news:OMj51AsFEHA.2808@TK2MSFTNGP10.phx.gbl...
> > Try breaking it down into steps. There is a lot involved here.
> >
> > Make sure that you can establish a connection locally using PPTP.
> Then
> > try making a normal client-server connection across the Internet.
> When that
> > works, try the router-to-router connection using PPTP or L2TP without
> IPSec
> > (or using a shared secret) and check that the routing between sites
> works.
> >
> > When that is working, start looking at your certificate problem.
> >
> > "lill" <lillanita@hotmail.com> wrote in message
> > news:ObvueLjFEHA.576@TK2MSFTNGP11.phx.gbl...
> > > Hi,
> > >
> > > I am trying to get a router-to-router VPN between two Windows 2003
> > > Servers running RRAS. I was told that this should be done using the
> > > demand-dial interface option, but I can not get the connection to
> work.
> > > I am using the L2TP/IPSec VPN connection with certificates, and gets
> an
> > > error message saying that no certificates to use with EAP is found,
> even
> > > though I do have certificates innstalled on the computer...(both
> machine
> > > certificates and user certificates). What is wrong? I also get error
> > > messages saying that no credentials are set, and that the username
> and
> > > password is not valid in the given domain. The user do exist in the
> > > domain, so I do not understand this...Is there anyone who have
> > > configured a router-to-router VPN using RRAS? How?
> > >
> > > Thanks,
> > >
> > >
> > > -Lill
> > >
> > >
> >
> >
>
>

Relevant Pages

  • Re: Can not access Web and FTP sites from Internet
    ... The wizard recongnised my router to be UpNp and this time I ... Ethernet adapter Server Local Area Connection: ... calling CNetCommit::ValidateRouterConnectionProperties. ... Call to Reading web publishing selection returned ok. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN randomly disconnecting my users
    ... router, it refused to sustain the connection. ... designed for the quality needed for Server or site-site VPN solutions. ... Calling an illegal alien an "undocumented worker" is like calling a ...
    (microsoft.public.windows.server.sbs)
  • Re: Urgent! New router and big disaster
    ... by CEICW for any type of connection other than full time broadband was ... exists - is completely transparent to the SBS. ... "local router with an IP address" is the setup that matches her network. ... between the server and my cable modem. ...
    (microsoft.public.windows.server.sbs)
  • Re: Urgent! New router and big disaster
    ... connected to is; what type of connection; or even whether a connection ... exists - is completely transparent to the SBS. ... "local router with an IP address" is the setup that matches her network. ... between the server and my cable modem. ...
    (microsoft.public.windows.server.sbs)
  • Re: TV service query ? ? ?
    ... a wireless router. ... a router with extended coverage. ... cable and a wireless connection that you can not see. ... is to have users downloading r/t video, large video files, or other ...
    (alt.home.repair)