Re: IPsec VPN connection from Win XP SP2
From: David Beder [MSFT] (dbeder_at_online.microsoft.com)
Date: 03/09/05
- Next message: Bob: "Re: 2 NICs, 1 pub, 1 priv. Only see pub? Help!!"
- Previous message: FenderAxe: "Re: w2k3 server across subnets"
- In reply to: Phillip Windell: "Re: IPsec VPN connection from Win XP SP2"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 9 Mar 2005 00:32:19 -0800
ipsec nat-t is included in xpsp2 and ws03, however I do not believe it's a
supported scenario to have a nat in front of the ras server.
-- David Microsoft Windows Networking This posting is provided "AS IS" with no warranties, and confers no rights. "Phillip Windell" <@.> wrote in message news:eSTUyaAJFHA.3832@TK2MSFTNGP12.phx.gbl... > If the 2003 box is the termination point of the tunnel, then I believe the > NAT devices are the problem. If I'm not mistaken IPSec doesn't work over > NAT > and requires NAT Traversal (NAT-T). If the NAT Devices involved are not > capable of that then you are screwed. > > If the two NAT Devices are capable of running as "VPN Servers" then you > could create a Site-to-Site VPN between them, but whether they could not > IPSec still depends on what they are capable of. > > -- > > Phillip Windell [MCP, MVP, CCNA] > www.wandtv.com > > > "Dennis" <archer_uk@hotmail.com> wrote in message > news:%23Nw8p0$IFHA.3500@TK2MSFTNGP14.phx.gbl... >> Hi >> I have VPN connection like below >> Win XP SP2----> NAT-1 ----Internet----> NAT -2 ----> Win 2003 Server. >> >> I can connect to my Server when i use the PPTP .It works perfectly > . >> But now i would like to connect to my server with IPsec L2TP . >> >> I open ( Nat-2 ) the UDP 500 , UDP 1701 , UTP& TCP 1723 and 50 and 51 >> port on and forwarded to win 2003 server Ip address.And also i > activeted >> the IPsec Pass Thourgh and PPTP pass thourgh option on my ( >> Nat-2 )router.( do i stiil open the port 47, port 50 and 51 even i >> activated the IPsec pass and PPTP pass thourgh option?). I haven't done >> anything on my Win XP sp2 client site router. I just enter the >> AssumeUDPEncapsulationContextOnSendRule , value 2 >> Word key under the >> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IPSec subkey. >> Then i created the VPN connection from Connect to menu .Then I >> open >> the properties ,select the Security tab and chose the IPSec Setting and >> enter the Preshare key which i wrote on the win 2003 server. i don't >> use >> the cert. now .I just use the Preshahere key at the moment.Then i went >> to >> Networking Tab and select the L2TP Ipsec for Type of VPN . i tried it >> but i doesn't work . >> >> If i cancel the Pre share key and chose the PPTP type connection i am > able >> to connect to VPN server.Do i have to do something on win xp client > side >> network . >> >> Any idea ? >> >> Thank you very much in advance. >> >> Dennis >> >> >> > >
- Next message: Bob: "Re: 2 NICs, 1 pub, 1 priv. Only see pub? Help!!"
- Previous message: FenderAxe: "Re: w2k3 server across subnets"
- In reply to: Phillip Windell: "Re: IPsec VPN connection from Win XP SP2"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
