W2k at home (dsl), W2k Server at work. How can I get to data on Server from home?

I would like to access data on my Windows 2000 Server located at the office, from my home computer.  How can I do that?  Setup a VPN?  How do I set up a VPN?  Do I need a VPN router or can I use the Linksys router currently on the office network.  I have Windows 2000 on my home computer.  I must set this up by the weekend.  Thank you very much.
jimdormanAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

GnartCommented:
You have two choices.  VPN is end-to-end.  You can set your VPN using one of the following model:

Office network <--> router (end) <= vpn tunnel =>(end) router <--> home network
Office network <--> router (end) <= vpn tunnel =>(end) home computer
Office computer (end) <= vpn tunnel =>(end) router <--> home network
Office computer (end) <= vpn tunnel =>(end) home computer

It depends on your LinkSys router model, it may or may not have VPN capabilities.
The model that has VP has VPN capabilities.  You can look it up.  Here is the setup for LinkSys (you follow similar step for other vendor)

1.  Access router configuration and go to VPN tab
2.  Give the tunnel a name.
3.  Enable it
4.  Set the local IP (either subnet or machine IP) you allow to access.
5.  Set the remote IP (either subnet or machine IP) you allow to connect.

6. Set Encryption:  DES or 3DES (stronger but slower)
7. Set Authentication (ISAKMP) MD5 or SHA (stronger)
7- SHA has two groups (1 = 768bits, 2 = 1024 bits) 2 is stronger (advanced button)
8.  Let the router perform key management.

9.  Set PFS (perfect forward secrecy)  for ISAKMP phase 2
9-  Leave it alone unless you are sure both end support this.
A.  Set shared key - The same key must be set for both sides - case sensitive
A-  It is used to exchange secret key.
B-  Set key life time - for how long before the end would renegotiate a new key.

Go through the above settings and set the other end point.  Watch out for settings:
The IP address settings are known as peer - it allows only those IP.
ISAKMP compare Security Association using:
Key must match for it to work.
Encryption must match......

cheers
0
bbaoIT ConsultantCommented:
i think another key factor you should consider is, how to access your data? the sub-questions are: how are the data stored? how do you access the data at office, you want use same methods to access the data remotely? i believe there is a firewall between your office and the internet, what is it and its internet policy? who manages the firewall, you?
0
bbaoIT ConsultantCommented:
jimdorman, any feedback please?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.