• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 611
  • Last Modified:

Adding VPN to Office Network

Our main office is looking to add VPN to our network setup so that a remote office in another city can access some of our database files.  Our current network is connected to WAN via a DLS router.  We then have a 4 port D-Link router/firewall/print server that then connects to a couple hubs for our workstation computers.
We really enjoy the print server function of our current router and have no reason to replace anything we currently have.  However, we'd like to add VPN to the setup.
What would be the best solution to add VPN to our network and where in the chain would it go?

       WAN
          |
     DSL Router
          |
    4 port D-Link router
     |
  HUBS
     |
  workstations


We are currently looking at the D-Link DFL-80 which is a 4 port Ethernet VPN Firewall.
Would this work if placed between the DSL Router and the 4 port D-Link Router?
0
borleymsgs
Asked:
borleymsgs
  • 3
  • 2
1 Solution
 
drev001Commented:
Can you tell a bit more about the IP setup here. How many public IP's do you have and what devices perform NAT?
0
 
borleymsgsAuthor Commented:
We are a small company currently using Win 98 P2P networking--no dedicated server.  We do have 5 static IP's, but am using only 1 at the moment.  We have no special devices for NAT--it is done through the existing software/hardware as diagrammed.  
0
 
borleymsgsAuthor Commented:
I noticed that I did not have the points as I as I intended.
0
 
drev001Commented:
If you have 5 IP's, the DSL router will be doing the NAT. The 4 port Dlink router confuses things slightly. Is it there purely to provide print services and extra hub ports or is it set up as a router also? If it's routing, and you're sure you're only using 1 IP then there's a double NAT setup here which is bound to confuse any VPN implementation. Could your clarify this?

Here's how I would set it up:

Internet
|
|
DSL Router - IP: 200.200.200.201 (No NAT)
|
|
VPN\Firewall Device - WAN IP: 200.200.200.202 LAN IP: 192.168.100.1 (NAT)
|
|
Print server, hubs etc.
|
|
Workstations

(Note: 200.200.200.x are made up public IP's. You'll use two out of your 5 assigned IP's with a subnet mask of 255.255.255.248)

The VPN should be a straight forward IPSEC tunnel with identical hardware at both ends. I've used SNAPGear VPN\Firewalls successfully for this kind of setup: http://www.snapgear.com
0
 
borleymsgsAuthor Commented:
I am finally getting back to my VPN project.  As you can notice, I am not extremely knowledgeable about networking, especially WAN's.  Anyway, the DSL router is a Cisco 675 merely used to get DSL into the office.  And the D-Link router is used mainly to provide a firewall for the LAN, although it also is used for print services for one printer.  I doubt if this makes any difference in your recommendation, but thought I at least respond to your question.  Thank you for your input.  If you have any further thoughts, I will appreciate receiving them.
0

Featured Post

Free recovery tool for Microsoft Active Directory

Veeam Explorer for Microsoft Active Directory provides fast and reliable object-level recovery for Active Directory from a single-pass, agentless backup or storage snapshot — without the need to restore an entire virtual machine or use third-party tools.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now