RE: SDSL VPN main to bmain

Hi Drew,

Thank you for posting in SBS newsgroup.

From your description, I understand you want to change your IPSec VPN
created between ISA2004 and Zyxel router to router to router IPSec VPN. If
I have misunderstood your concerns, please do not hesitate to let me know.

As I know, you can create router to router VPN between head office and
branch office. You do not need to do configuration on SBS. However you will
not access to internal clients of head office from remote office and can
only access to SBS.

More information:

888711 Site-to-site VPN in ISA Server 2004
http://support.microsoft.com/?id=888711

867483 How to configure networks in ISA Server 2004
http://support.microsoft.com/?id=867483

Configuring IPSec Site-to-Site Connections Between ISA Server 2004 and
Third-Party Gateways
http://www.microsoft.com/technet/prodtechnol/isa/2004/plan/sitetositeipsec.m
spx

Site-to-Site VPN in ISA Server 2004 Standard Edition
http://www.microsoft.com/technet/prodtechnol/isa/2004/plan/sitetositevpn.msp
x

Establishing an IPSec site-to-site tunnel between an ISA 2004 Firewall and
a D-Link DI-804HV IPSec VPN Router
http://www.isaserver.org/articles/2004isadlink.html

ISA Server 2004 Performance Best Practices
http://www.microsoft.com/technet/prodtechnol/isa/2004/performancebestpractic
es.mspx

I appreciate your time and look forward to hearing from you.

Best regards,

Crina Li (MSFT)

Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security

=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.

=====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| Thread-Topic: SDSL VPN main to bmain
| thread-index: AcZ4Cs2nQTt8vRhERcKvc09r0vnOew==
| X-WBNR-Posting-Host: 80.176.230.254
| From: =?Utf-8?B?ZHJldw==?= <drew@xxxxxxxxxxxxxxxxxxxxxxxxx>
| Subject: SDSL VPN main to bmain
| Date: Mon, 15 May 2006 03:32:02 -0700
| Lines: 21
| Message-ID: <233C58E7-F7B0-4B72-B8DA-1233149E270E@xxxxxxxxxxxxx>
| MIME-Version: 1.0
| Content-Type: text/plain;
| charset="Utf-8"
| Content-Transfer-Encoding: 7bit
| X-Newsreader: Microsoft CDO for Windows 2000
| Content-Class: urn:content-classes:message
| Importance: normal
| Priority: normal
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.1830
| Newsgroups: microsoft.public.windows.server.sbs
| Path: TK2MSFTNGXA01.phx.gbl
| Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:268070
| NNTP-Posting-Host: TK2MSFTNGXA01.phx.gbl 10.40.2.250
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| vpn site to site, ISA 2004 or 2 vpn routers?
|
| Hi
| Platform: SBS 2003 Premium SP1, ISA 2004 (subnet 192.168.1.0).
|
| A remote site (10 PCs) connects to the head office (50 PCs) via ISA 2004,
| using an IPSec tunnel, via an ADSL modem. The remote site router is a
Zyxel
| Prestige 652HW, that uses IPSec v1. The connectivity is fairly reliable,
as I
| think ISA 2004 uses IPSec v1. The remote site has Win 2k and XP Pro
clients
| (subnet 192.168.2.0).
|
| I have tried upgrading the remote router to a Zyxel Prestige 662HW, that
| uses IPSec v2. The connection is not stable.
|
| To overcome this problem, can I setup a site to site IPSec tunnel, from
the
| remote router to a new Zyxel 662HW router at the head office. Rather than
to
| ISA 2004?
|
| If this is possible, how do I setup SBS 2003 and ISA 2004, with this new
| scenario?
|
|

.

Relevant Pages

  • Re: Conecting to an external VPN
    ... Modem involved too,..hopefully a separate "box" from the router. ... How to configure a PPPoE connection in ISA Server 2006 or in ISA Server 2004 ... outbound VPN connections,...but I was unable to find any. ... There is no firewall client.. ...
    (microsoft.public.isa.vpn)
  • RE: How to setup SBS Network Interface for VPN connection to remot
    ... configuration at this company to allow the Router to Router method. ... You want to know how to create a site-to-site VPN connection from the SBS ... ISA server available). ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN / IPSec Help
    ... > it might be quicker to setup PPTP to use over your VPN rather than L2TP. ... > This is still very secure, not as secure as L2TP but it doesn't use IPSEC ... >>> Does your router act as a NAT or are you using ICS?? ...
    (microsoft.public.win2000.security)
  • Re: VPN nightmare
    ... Assuming both sites run Cisco routers, the IPSec VPN is just give a 24/7 connection and no thing to do with Windows. ... I've been trying to get a Cisco 800 series router to manage a VPN ...
    (microsoft.public.windowsxp.work_remotely)
  • Re: VPN-Linksys WRV54G
    ... The router should have a place in the firewall settings to "Allow VPN ... ISA Server or RRAS? ...
    (microsoft.public.windows.server.sbs)