VPN and NAT

Port forward on both ends?

Just at the office, your machine at home will figure out what it needs to.

Chris, thanks for the answer, I'll test it over the weekend.

mwvisa1, yes, it's a good idea. I already have No-ip, which works fine.

Is it possible to stablish the VPN connection and still be able to access Internet (adresses outside my office network)?

Yes, there are ways to do this, you can run Routing and Remote Access on a Windows 2003 box and pass port 1723 to that server, and run the VPN's from it.  This will allow you to use "split tunnelling" you can also use this feature with Cisco Pix and the Cisco Client VPN software.  The way you are going about it will allow you to do the split tunnel.

Cheers,

Chris

You mean, a separate Windows 2003 box?

Nope that box... here's a link to help with the setup.

http://techrepublic.com.com/5100-6329-5074473.html#

Cheers,

Chris

I did connect successfully but I couldn't access anything on my office network. It might have to do with me not getting a valid IP. Anyway, this is my ipconfig:


Windows IP Configuration


Ethernet adapter Local Area Connection:

        Connection-specific DNS Suffix  . : @
        IP Address. . . . . . . . . . . . : 10.1.1.3
        Subnet Mask . . . . . . . . . . . : 255.0.0.0
        Default Gateway . . . . . . . . . : 10.1.1.1

PPP adapter VPNWork:

        Connection-specific DNS Suffix  . :
        IP Address. . . . . . . . . . . . : 169.254.70.42
        Subnet Mask . . . . . . . . . . . : 255.255.255.255
        Default Gateway . . . . . . . . . : 169.254.70.42

Ok, how/where do I do it? Under Routing and Remote Access?

Yep - it's in RRAS. The other thing you can do is set up a specific pool, but it's probably simplest to relay DHCP from the existing DHCP server on the LAN

H

Well, it didn't let me configure RRAS because Incoming Connections was on. Since I don't want to turn it off and it's ok to me, I assigned an IP range and it works fine! I mean, it works only when I call computers by IP, not by their name. Is there anything that can be done to fix it?

Thanks!

Yeah - u need to add a DNS server - either by DHCP or by hard coding it into your IP settings on the client(s). I suspect that's all that'll be needed now.

H

You should be able to access by name, however you'll have to use the FQDN to get to those.  instead of using just TED, you'd need to use TED.MYDOMAIN.COM


Chris

I managed to configure DNS server and now I can access it by typing computername.domain. I wish I could call computers by their netbios names, but it's fine.

I did access my network from other computers, but I wasn't able to do it from home. Is it because I have the same IP range/subnet in my home network?

OK - now all you need to do is add a DNS suffix to your IP connection - you can do this with the DHCP if you've set it up that way, or alternatively on the DNS tab in the TCP/IP Configuration of the LAN card.

Once you've done that, all should be set to go with netbios names.

Kind regards

H