I have a lot of clients that want to VPN into the company network. I have setup a 2003 server box with a Public IP address on the outside of the firewall to let users VPN in through RRAS using the native VPN client in XP on their machines. These are users wanting to work from home connected via Cable modems or DSL to the public Internet.
My worry is security. Is there anyway to make this more secure using the software that comes with Windows? I was thinking of Cisco's product which allows you to restrict users by MAC address. Is there a way to only allow certain machines as well as users to connect via the VPN?
I do not have many users doing this yet but many are clammoring to get access and I am hoping to come up with an inexpensive solution that is secure.
I appreciate the help.