Solved

Creating a basic VPN

Posted on 2004-10-19
7
201 Views
Last Modified: 2010-04-10
I have installed a new server for one of my clients in their HQ this is set up as a domain in AD etc

They then have another server (their old one) that i have taken to another part of the country and want to use it to connect to the one at the hq.

That has an identical config as its setup how the new one is. same domain everything. I created a vpn from one to the other so the server can dial in from the remote office to the new one using a VPN router, adsl and a firewall. Im using an Allied Telesyn router.

Ive set up a user in one the hq server and a dial up on the remote server.

The connection works fine. But my questions are .

1. Is this the best way to do it without buying any additional hardware and spending loads of time on config as the office is approx 400 miles away.
2. Can the pcs in the remote office map a drive directly to the hq?
3. i dont want to assign another domain (i.e another forest etc) as we havent done this before and im not sure how big a job it is or how difficult to support
4. Is there a way to ensure it works relatively fast or perhaps a better quicker way to do the above.

thanks in advance.

0
Comment
Question by:proy31
7 Comments
 
LVL 6

Expert Comment

by:gjohnson99
Comment Utility
Do you mean over internet  using vpn ?

Yes you can.

0
 

Author Comment

by:proy31
Comment Utility
yes just over the internet

thanks
0
 
LVL 1

Accepted Solution

by:
zasupport earned 250 total points
Comment Utility
0
 
LVL 2

Assisted Solution

by:chrispallett
chrispallett earned 250 total points
Comment Utility
Assuming both servers are running windows 2000 it can be done quite easily in a server/client arrangement.  You can even do your configuration over VPN/remote desktop and save yourself the 400 mile drive to do any hardware installation :D.

1.   On one server, add a persistant vpn route to the other server.  Add static routes for the IP range on the destination server.

This is will give you one way routing (effectively address translation) and you're half way there.

2.  On the destination server have a user account for the source server to authenticate the VPN with.  Under the user properties in AD, configure the user with a static IP for remote access, and add routes for the IP range it is connecting from.

This gives you your routes back and two way routing.

3.  Either run some DNS zone replication or push/pull WINS between the two servers over the VPN link.  This gives you some name resolution for your clients and makes mapped drives nice and simple.
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Occasionally you run into the website or two that will not resolve properly using your own DNS servers.  Some people simply set up global forwarders for their DNS server.  I don’t recommend doing this because it can cause problems resolving addresse…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now