Re: VPN with only 1 NIC??
From: Merv Porter [SBS-MVP] (mwport_at_hotmail.com_no_spam)
Date: 02/14/04
- Next message: Jeff Middleton [SBS-MVP]: "Re: Reducing number of services"
- Previous message: Hal: "Companyweb and ISA"
- In reply to: Jose: "VPN with only 1 NIC??"
- Next in thread: Stuart Mackie [MCP, MSP]: "Re: VPN with only 1 NIC??"
- Messages sorted by: [ date ] [ thread ]
Date: Sat, 14 Feb 2004 18:08:54 -0500
A second NIC offers an additional layer of security... your primary firewall
is RRAS (SBS 2003 Std.) or ISA (SBS 2003 Premium) while your router offers a
secondary firewall. Mariette's web site has some diagrams that explain
more, although they were originally designed for SBS 2000:
http://www.smallbizserver.net/DesktopDefault.aspx?tabid=28
Basically, the hardware flow is: (external = connected to router; internal
= connected to LAN switch)
Broadband Modem => router => External NIC in SBS
The internal NIC in the SBS and all the workstations would then be connected
to the LAN hub or switch.
DHCP is disabled on the router and enabled on the SBS. The external NIC and
the router are both in the same subnet and this subnet is different from
that of the SBS and workstations. Then you run CEICW to configure the RRAS
firewall and other services. After that, open the proper ports in your
router to forward the desired external traffic to the external NIC in the
SBS. Some routers are UPNP compliant and CEICW can automatically configure
the router for the services you select. (However, this automatic setup
using UPNP doesn't always work properly so you may still need to set up the
router manually).
There have been some problems with Linksys routers not properly handling
PPTP and GRE protocol 47, which are required for standard VPN. This problem
*may* be addressed by flashing the router with a later version of Linksys
firmware.
Remember also that some Cable and DSL providers do not allow you to set up
VPN servers. That said, chances are your VPN issue is a network
configuration problem or firmware problem with the Linksys router.
-- Merv Porter [SBS MVP] =================================== "Jose" <anonymous@discussions.microsoft.com> wrote in message news:fd2901c3f349$aecedaa0$a101280a@phx.gbl... > I'm still having trouble creating a VPN connection from > home to the SBS2003 server at the office. > > Could the reason be that the SBS2003 is behind our Linksys > router using only one NIC? > > Is a VPN possible in this configuration: > > Internet > | > Cable Modem > | > Linksys Router > | | > SBS Srver Clients > > Or should I install the additional NIC in the SBS2003 > machine? > > If I need to install the NIC, would the machine connect > directly to the Cable Modem? If so, is the Firewall in > SBS2003 as robust as the Linksys Firewall? Would the > following be the configuration: > > Internet > | > SBS Server > | > Linksys Router > | > Clients > > thanks!
- Next message: Jeff Middleton [SBS-MVP]: "Re: Reducing number of services"
- Previous message: Hal: "Companyweb and ISA"
- In reply to: Jose: "VPN with only 1 NIC??"
- Next in thread: Stuart Mackie [MCP, MSP]: "Re: VPN with only 1 NIC??"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
