Re: Which VPN Type best for SBS environment.

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Leythos <void@xxxxxxxxxxx>
Date: Thu, 31 Jul 2008 19:58:40 -0400

In article <AF770CF1-6737-4F6A-8C47-6089E9DB9D5A@xxxxxxxxxxxxx>,
Michael@xxxxxxxxxxxxxxxxxxxxxxxxx says...

Got two routers for head office and a branch. The router offers these types
of options for site to site vpn:
PPTP, IPSec Tunnel (main mode), Ipsec Tunnel (agressive mode), L2TP, L2TP
over IPSec. Which one is better in terms of security, reliability and speed?

And also the SBS has 2 Nics, should we just use one? as the router has built
in firewall as well and they claim their firewall is good
http://support.draytek.net.au/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=80&nav=0,21

IPSec is the proper method, but, with Dual NIC's you're going to have a
lot of issues.

Stop the 2 NIC idea, get two firewalls, not cheap routers, and setup
real firewall rules to protect the networks, then setup site-site IPSec
tunnels.

--
- Igitur qui desiderat pacem, praeparet bellum.
- Calling an illegal alien an "undocumented worker" is like calling a
drug dealer an "unlicensed pharmacist"
spam999free@xxxxxxxxxx (remove 999 for proper email address)
.

Prev by Date: Re: Defragmentation
Next by Date: Re: SBS loses installed licenses
Previous by thread: Re: Hyper-V in SBS 2008
Next by thread: Re: Which VPN Type best for SBS environment.
Index(es):
- Date
- Thread

Relevant Pages

Re: Win2K Security & Firewall - long post
... IPSec, and more so some reasons why it might be a bad idea for MS to ... realize that tailoring an IPSec policy for a specific home user, ... disabled their personal firewall. ... Won't work if the malware uses a "legitimate" means of disabling ...
(comp.security.firewalls)
Re: Isolate systems
... some sort of port/protocol/Ip/mac"filtering" via switches, ipsec filtering, ... firewall yourself from outside the network, even if you use a self scan site ... If legitimate users are trying to attack your computers you may have to see ...
(microsoft.public.win2000.security)
Re: sysvol replication breaks when IPSec running between DCs & fir
... IPSec" as per as per Steve Riley ... I do not know how to write a firewall rule to ensure that IP ... Riley says you can "Encapsulate domain controller traffic inside ... the IPsec exists underneath the Windows Firewall ...
(microsoft.public.windows.server.active_directory)
Re: Win2K Security & Firewall - long post
... coupled with the fact that most Win2K users are not home users. ... > the regard of disabling insecure functionality within specific ... > of whether or not IPSec is a good thing or not it is just one of those ... > disabled their personal firewall. ...
(comp.security.firewalls)
Re: VPN not working when client behind another firewall
... The latest is that we have tested the ports and GRE ... >place a hardwarebased firewall router out in front of SBS ... This area is NAT-T over IPSec across ... >server to work when behind a NAT. ...
(microsoft.public.windows.server.sbs)