Need help setting up remote access SBS 2003

Posted on 2004-11-08
Last Modified: 2010-08-05
This one should be quite basic, I am after a kind of step-by-step idiots guide if possible - I need this information fairly quickly and there is an additional question sneaked in at the end regarding OWA, so lots of points to the person who answers all of it :

I am working on a small SBS 2003 network, server + 5 clients. It was not set up by me but all seems fairly standard and simple. Internet connectivity is via a wireless broadband router.

I need to set up remote access to provide VPN access via home broadband connections.

If the server had a public IP direct on the internet, I understand this would be a simple case of installing RRAS and setting up VPN connections on the client machines, pointing to this public IP. I have been given a number of IP addresses by the client pertaining to be "public IP addresses" but I cannot get a ping response from any of them at this point.

We are going through a wireless router, which, hopefully, will prove to be capable of accepting incoming VPN connections, so the client VPN connections will point at this IP. SO my plan will be to get into the config of this router, establish its public IP and create a VPN account for an incoming test user.

Once I have successfully connected to this IP using PPTP over broadband, I should be on the network, with a DHCP address assigned by the wireless router - so far so good - but what do I need to do next ? Although the user will be on the network, they will not be logged into the domain - how do I proceed from here, given that they need to map to their drives (batch file ?) and access their Outlook data.

Final question : What about Outlook Web Access ? I would like this set up so it can be accessed from anywhere behind a password - how do I make this work if the server doesn't have a public IP on the internet ?

I hope you understand my ramblings.
Question by:benleicester
    LVL 1

    Expert Comment

    Once you are authenticated over the VPN you are on the network to get to network drive that must be mapped manually, the server will prompt them for their user name and password same goes for Outlook. I have this setup with a sonicwall firewall managing the VPN connections. The best thing to do if they are mobile laptop users is configure everything on the domain mapped drives, etc.

    Well if you don’t have a public IP how is your Exchange Server setup

    LVL 1

    Author Comment

    Have established the public IP now - silly me.

    Sorry follow up questions :

    - Does the router deal with incoming PPTP connections or is the traffic handled directly by the server using RRAS ?

    - You say to configure everything on the domain, will this mean that on logon RRAS will map drives as it would if they logged on on the LAN ? Or am I better to create a batch file to map drives ?

    - How am I restricted in terms of number of inbound connections ? Am using 1mb ADSL.

    Thanks for the help so far...

    LVL 1

    Accepted Solution

    You can set up a VPN two ways either with the firewall doing the authentication or a RRAS server I prefer a Firewall handing the authentication, less overhead on the server and more secure. When you get authenticated all files will be accessible to the users that they have rights to. I don’t think a logon script (batch file) will run over the VPN it should because it is user specific. If you use a RRAS your users would log in with their username and password it’s not as secure as a firewall VPN. Usually with a good firewall you can download the clients that will automatically negotiate whatever encryption you set on the firewall.

    A 1mb ADSL is that up and down? and how many users are you talking about. I currently have 5 concurrent connections on a 512MB up and down its ok for now.

    Good luck

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    Join & Write a Comment

    Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
    On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
    In this sixth video of the Xpdf series, we discuss and demonstrate the PDFtoPNG utility, which converts a multi-page PDF file to separate color, grayscale, or monochrome PNG files, creating one PNG file for each page in the PDF. It does this via a c…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now