Re: vpn access
jjd228_at_NOSPAMoptonline.net
Date: 11/04/04
- Next message: CHANGE USERNAME TO westes: "Question on How to Run DNS as Domain User"
- Previous message: Matt: "Proxy Arp on Windows 2003 Standard Server"
- In reply to: Param R.: "Re: vpn access"
- Next in thread: Bill Grant: "Re: vpn access"
- Reply: Bill Grant: "Re: vpn access"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 04 Nov 2004 19:17:00 GMT
wah wah wah.....
now how about reality? i have RRAS setup to allow incoming PPTP VPN
connections on many DC's and it works flawlessly. yes youll get the
occassional warning or browser error in the logs but it does not hurt
functionality in any way.
setup RRAS (its built in). your firewall will have to allow port 1723 for
PPTP VPN traffic, and the GRE protocol. GRE usually only needs port 47 but
different product will use different terminology. for instance on a linksys
router the term "allow PPTP passthrough" automatically allows GRE.
hope this helps
"Param R." <pr@nospam.com> wrote in message
news:%23B1mwUpwEHA.3620@TK2MSFTNGP09.phx.gbl...
> Does MS have a KB Article for these issues with a workaround?
>
> TIA!
>
> "Robert L [MS-MVP]" <noreply@hotmail.com> wrote in message
> news:OtEMuIpwEHA.3844@TK2MSFTNGP12.phx.gbl...
>> The following quotation from http://www.ChicagoTech.net may help. If you
>> want to, you can install VPN on the DC, but you may experience some
>> connection issues and you may need to spend more time on troubleshooting.
>>
>> Connection issues on DC, ISA, DNS and WINS server as VPN server
>>
>> Symptom: You have a Windows 2000/2003 server is configured as VPN running
>> DNS, WINS, you may experience some connection issues. 1) the internal
>> computers can't ping the server by name; 2) if the server is a DC and
>> Master Browser, you may have a computer browsing issue; 3) you may
>> receive Event ID: 4319 - A duplicate name has been detected on the tcp
>> network; 4) You may receive error messages like "No Logon Servers
>> Available to Service your Logon Request" when you try to open file shares
>> or map network drives to the Routing and Remote Access server; 5) if the
>> server is also a DC, you may not be able to logon the domain; 6) if the
>> server is also running ISA, you cannot browse the Web from client
>> computers on the local network, regardless of whether the computers are
>> configured to use Web Proxy or the Microsoft Firewall Client. For
>> example, "The page cannot be displayed" may appear in the Web browser
>> with a "cannot find server or DNS" error message.
>>
>> Cause: When a VPN client connects to the VPN server, the server creates a
>> PPP adapter to communicate with the remote computer. The server may then
>> register the IP address of this PPP adapter in the DNS or the WINS
>> database. When the internal computers try to connect to the IP address of
>> the PPP adapter, them cannot reach the PPP adapter, then the connections
>> fail.
>>
>> --
>> For more and other information, go to http://www.ChicagoTech.net
>>
>> Don't send e-mail or reply to me except you need consulting services.
>> Posting on MS newsgroup will benefit all readers and you may get more
>> help.
>>
>> Bob Lin, MS-MVP, MCSE & CNE
>> Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
>> http://www.ChicagoTech.net
>> Networking Solutions, http://www.chicagotech.net/networksolutions.htm
>> VPN Solutions, http://www.chicagotech.net/vpnsolutions.htm
>> VPN Process and Error Analysis,
>> http://www.chicagotech.net/VPN%20process.htm
>> VPN Troubleshooting, http://www.chicagotech.net/vpn.htm
>> This posting is provided "AS IS" with no warranties.
>> "Param R." <pr@nospam.com> wrote in message
>> news:euJfhjowEHA.2732@TK2MSFTNGP12.phx.gbl...
>>> Why is it not recommended? To my knowledge SBS does exactly that. We are
>>> not talking about a lot of users here. Just 5 to start off with. I am
>>> just trying to cost justify the ISP charging me $500/month for 5 user
>>> VPNs. That is ridiculous.
>>>
>>> thanks!
>>>
>>> "Robert L [MS-MVP]" <noreply@hotmail.com> wrote in message
>>> news:%23c1TcfowEHA.1292@TK2MSFTNGP10.phx.gbl...
>>>> it is not recommended to install VPN on DC. I would setup a hardware
>>>> VPN instead.
>>>>
>>>> --
>>>> For more and other information, go to http://www.ChicagoTech.net
>>>>
>>>> Don't send e-mail or reply to me except you need consulting services.
>>>> Posting on MS newsgroup will benefit all readers and you may get more
>>>> help.
>>>>
>>>> Bob Lin, MS-MVP, MCSE & CNE
>>>> Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting
>>>> on http://www.ChicagoTech.net
>>>> Networking Solutions, http://www.chicagotech.net/networksolutions.htm
>>>> VPN Solutions, http://www.chicagotech.net/vpnsolutions.htm
>>>> VPN Process and Error Analysis,
>>>> http://www.chicagotech.net/VPN%20process.htm
>>>> VPN Troubleshooting, http://www.chicagotech.net/vpn.htm
>>>> This posting is provided "AS IS" with no warranties.
>>>> "Param R." <pr@nospam.com> wrote in message
>>>> news:O26wUAowEHA.1308@TK2MSFTNGP09.phx.gbl...
>>>>> Hi all, we are planning on setting up 4 2003 servers at a Data Center.
>>>>> The data center will be providing the hardware firewall. One of these
>>>>> 4 servers will be a Domain Controller running 2003 Standard. Do I have
>>>>> the ability to setup some sort of VPN server built into windows?
>>>>> Reason I am asking is the Data Center is charging serious $$ to setup
>>>>> vpn access. I would rather if possible set it up ourselves if it isnt
>>>>> too much of an administrative hassle. We will only have about 5 users
>>>>> using VPN to access this remote network. If it is possible, what
>>>>> services do i need to install and configure on the Domain Controller?
>>>>> Also, what ports do they need to open up on the firewall?
>>>>>
>>>>> Any help here is much appreciated.
>>>>>
>>>>> thanks,
>>>>> Param
>>>>>
>>>>
>>>>
>>>
>>>
>>
>>
>
>
- Next message: CHANGE USERNAME TO westes: "Question on How to Run DNS as Domain User"
- Previous message: Matt: "Proxy Arp on Windows 2003 Standard Server"
- In reply to: Param R.: "Re: vpn access"
- Next in thread: Bill Grant: "Re: vpn access"
- Reply: Bill Grant: "Re: vpn access"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
