Re: Configuring VPN or Remote Access

Tech-Archive recommends: Speed Up your PC by fixing your registry

Thankyou for the help.
So, I take it that having just the one NIC should not be a problem?
There will likely be only one remote connection to the network at any one
time.
The firewall is a separate box running IP Cop which is linux based. It was a
relatively simple exercise to open ports on this, but it seems somewhat more
difficult on the router. It apparently needs to be restarted after adding the
ports forwarding, and then when the router restarts the SBS needs to be
rebooted before even using the internet works again!!
Anyway ... I think you have confirmed that I am heading in the right
direction,
Thanks again.
Steve

"Merv Porter [SBS-MVP]" wrote:

> CEICW (Configure Email and Internet Connection Wizard). Server Management
> | To Do List | Connect to the Internet
>
> Router Ports... Yes, unless the router is running wide open for inbound
> traffic, you'll need to forward the ports you mentioned to the firewall
> (which I presume is a separate box running IP Cop - not familiar with this
> but it appears to be a Linux software firewall).
>
> Port redriection DSL 500
> http://www.dlink.com.au/tech/drivers/files/routers/How_to_open_ports_in_DSL-5xx.pdf
>
> I've seen posts where some have experienced problems with VPN and DSL-500.
>
> --
> Merv Porter [SBS MVP]
> ===================================
> "Stephen_d" <Stephend@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:91A2577F-2242-451F-A1CB-8AB31764278D@xxxxxxxxxxxxxxxx
> > Hi Merv,
> > Yes, have a router, but have only one NIC on the server. Maybe thats a
> > problem ?
> > I have opened ports 4125, 443, 1723 on the firewall ( It is running IP
> > Cop )
> > Do I also have to open ports on the Router? ( DLink DSL-500 )
> > CECIW ? ... sorry can't work out what that stands for.
> >
> > Thanks
> > Stephen
> >
> >
> > "Merv Porter [SBS-MVP]" wrote:
> >
> >> Hi Stephen,
> >>
> >> I assume you have two NICs and a router on your SBS network...
> >>
> >> For VPN, you'll need to forward port 1723 and GRE Protocol 47 to the
> >> external NIC.
> >>
> >> For RWW, you need to forward ports 443 and 4125 to the external NIC.
> >>
> >> Then run CEICW, enable the firewall ad select the services you want to
> >> allow. You'll also need to use the WAN IP address to create the Web
> >> Server
> >> Certificate so that you can access RWW. Then run Configure Remote
> >> Access
> >> to get VPN set up.
> >>
> >> --
> >> Merv Porter [SBS MVP]
> >> ===================================
> >> "Stephen_d" <Stephend@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> >> news:537700D3-2EA2-49A9-B56A-D8F88B3DF150@xxxxxxxxxxxxxxxx
> >> > Hi,
> >> > Maybe I'm missing something here. But I am attempting to provide access
> >> > to
> >> > our SBS 2003 via either remote web workplace or VPN. I have used the
> >> > "configure remote access" wizard on the SBS - note we do not have a
> >> > static
> >> > IP
> >> > address but I assume ( at least in the short term ) that I can use the
> >> > IP
> >> > address the router is currently using as it's external web address. I
> >> > then
> >> > use the create remote connection disk wizrd and run this install on the
> >> > remote PC. No luck though ... on the remote PC I get a message saying
> >> > the
> >> > computer cannot be connected to because it is "either not available or
> >> > security settings are not set correctly".
> >> > Do I need to allow some type of access through our work firewall ?
> >> > Maybe
> >> > allowing access via port 4125 ?
> >> > I am stuck, can anyone help?
> >> >
> >> > Cheers
> >> > Stephen
> >>
> >>
> >>
>
>
>
.

Relevant Pages

  • Re: CEICW Network Error
    ... When running the CEICW and choosing to 'disable firewall' it failed at the 'configuring network' point. ... This puts us into a bad spot due to the lack of filtering/NAT on the router but though we have no 'firewalling' the existence of 'listening services' on the external nic can be checked using 'netstat -aon | find "external_IP"', if services are listening and we don't want them there it can be dealt with. ... This status should only exist for a short time, possibly longer if the subsequent run of the CEICW fails to enable the firewall. ... I have reviewed both NICs, binding orders, services....etc... ...
    (microsoft.public.windows.server.sbs)
  • Re: What is broken:McAfeee firewall or my router ????? Urgent, ple
    ... your computer regardless of what McAfee firewall said. ... If your router is ... warned about those ports being available right away if you had any of those ...
    (microsoft.public.security)
  • Re: What is broken:McAfeee firewall or my router ????? Urgent, ple
    ... your computer regardless of what McAfee firewall said. ... If your router is ... warned about those ports being available right away if you had any of those ...
    (microsoft.public.security)
  • Re: CEICW Network Error
    ... This status should only exist for a short time, possibly longer if the subsequent run of the CEICW fails to enable the firewall. ... Server service can then be told to use the router or your ISP's DNS Servers as forwarderby submitting such during the CEICW or manual adjustment, OR you can leave the DNS setting blank during CEICW and SBS DNS will resolve using 'root hints'. ... I have reviewed both NICs, binding orders, services....etc... ...
    (microsoft.public.windows.server.sbs)
  • Re: best network setup?
    ... I have to pickup a nice router now. ... Two nics allow separation of the internal and external networks, ... Two nics allow the SBS to provide the services that it knows best how ... > firewall is down for any reason. ...
    (microsoft.public.windows.server.sbs)