Re: Help setting VPN (RRAS) on W2K Advanced Server behind a router

Hi,

Okay if the way to go about is as your
http://www.howtonetworking.com/VPN/2003vpn11.htm

Then one more question, if my router already provides the VPN tunnel into
the network, do I choose "LAN routing" in the second screen shot instead of
"VPN access"

Best Regards,
Mauro

"Mauro" wrote:

Hi Robert,

Thanks for confirming what I have been seeing.

The question is, HOW do you set it up then if during the configuration of
the RRAS it asks which NIC is the internet side? Is is okay to give the
other nic any IP and not even connecting it?
I have been searching for a step by step on how to set this up using one NIC
but can't find anything that completely describes the setup.

Any help would be appreciated, again Thanks for your time.

Regards,
Mauro

"Robert L [MVP - Networking]" wrote:

Again, you don't need to have two NICs to setup RRAS/VPN if it is behind a router. If for some reasons, you must have multihomed server and enable NAT, you must configure it carefully, especially the routing and name resolution. Otherwise, you may have a connectivity issue.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
"Mauro" <Mauro@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:DEE0A3ED-F312-41CC-AC37-F265DC67F559@xxxxxxxxxxxxxxxx
Hi,

I don't know about that howto. I am also in the same situation one server
that I want to use VPN with, multiple NIC but all behind a Nat router.

The mistake I made was to use the main server IP as the internet connect,
once I connected it threw everybody off the network.

Prior to this I tried another test on another server with a made up private
IP on one nic which wasn't even connected, and the server IP as the network
connection.
When I made the remote VPN connect I went straight to lan ip because my
router can handle the VPN directly and I was able to authenticate directly to
the server.

Without the remote access and routing setup on the server I can't do
anything, what setup should I use to get this working?

Regards,
mauro


"Robert L [MVP - Networking]" wrote:

> In this case, the server can be just one NIC. This how to may help,
>
> VPN SetupHow to setup VPN on w2k server with one NIC ... To setup a Windows 2000 server for VPN, open Routing and Remote Access console in the Administrative Tools ...
> www.chicagotech.net/vpnsetup.htm
>
>
> Bob Lin, MS-MVP, MCSE & CNE
> Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
> How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
> "globemast" <globemast@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:13491A73-732A-42A4-84DD-060809CE0FFC@xxxxxxxxxxxxxxxx
> Hello,
>
> I currently want to setup my W2K Adv. Server as a VPN Server using RRAS.
>
> From what i have read so far, the server machine has to have 2 ethernet
> cards, on for the local network and one connected to the Internet.
>
> The LAN ethernet must be assigned static IP's within the LAN (i.e
> 192.168.1.10) and the WAN ethernet must be given the public IP assigned by
> the ISP. This is all clear to me.
>
> But my case is a bit different. My W2K server is behind and ADSL
> router-modem which is assigned a public IP from the ISP. Both ethernet cards
> on the server are thus assigned private (LAN) IP's.
>
> What should be the configuration of each ethernet card, assuming ETH1 should
> be for the LAN and ETH2 should be for the WAN.
>
> P.S. My network (LAN) has several machines which get their IP's from the
> ADSL router. IP's are in the range of 192.168.1.xxx
>
> Thank you in advanced
.

Relevant Pages

  • Re: [Full-disclosure] Remote Desktop Command Fixation Attacks
    ... This set of steps is redundant in many places, and it's also enormously expensive, since you're using no less than three different expensive bits of networking hardware (AP, PIX, VPN Concentrator), in addition to a bunch of x86 server hardware, windows server licenses, and at least one ISA license. ... Your computers necessarily don't have full access to your network infrastructure when they aren't logged on, so GPOs, software updates, etc can't be applied at the times you want them to be applied. ... Turning on, enabling, and implementing every possible security setting and device you think of is not defence in depth, and will probably only have two effects - your users won't use your wireless network, and you'll burn so much cash you won't have any left to spend on *useful* security measures. ...
    (Full-Disclosure)
  • Re: VPN Question
    ... However, to administer that server, you don't have to use VPN. ... You can TS into that server, which will give you the server console. ... The SBS network is behind the ... > internal router and DHCP is handled by the SBS server. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN with SBS 2003 (not R2) and DSL.
    ... Reading property value for VPN returned OK ... Reading VPN Server Name returned OK ... identical network cards. ... it seems doubtful that SBS will work properly with two NICs ...
    (microsoft.public.windows.server.sbs)
  • Re: Connection from remote computer to network SQL Server
    ... There is no firewall on the W2K machine acting as the SQL server. ... I tried making the SQL machine a "trusted" on the router. ... connection works. ... To find the IP address of your computer inside the network, ...
    (microsoft.public.access.adp.sqlserver)
  • RE: VPN Connection Problems
    ... Note that we are able to successfully VPN into the office. ... to browse the network, RDP to the server or even ping the server. ... > This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
Loading