VPN - What am I supposed to do?

ok we have a watchguard firewall and a windows 2003 server.

We want to use the watchguard firewall for authentication.

We can get past the watchguard bit, but what do we do after that?

Once I am "in" the network how can I find my files and stuff I need to access?
LVL 5
georgecooldudeAsked:
Who is Participating?
 
blin2000Connect With a Mentor Commented:
network browsing is alsways a problem. this may help. quoted from http://www.chicagotech.net.

Unable to browse through PPTP/VPN connection
Symptoms: 1. If the WINS server is on the same computer as the PPTP/VPN server, and you attempt to connect to a computer using a PPTP/VPN client, you may experience following problem: 1) The NetBIOS name of the computer to which you are attempting to connect is not resolved. 2) You may receive an error message similar to the following error message: "System error 53 has occurred.  The network path was not found" when using net view or opening Network Knighthood.
2. If the WINS server is not on the same computer as the PPTP server and you attempt to connect to a computer using a PPTP client, you may be able to connect to computers on your local area network (LAN), but you may be unable to connect to network shares or resources on the PPTP server.
Resolutions: Inability to browse often means the client can't resolve NetBIOS names.
1. If this is a workgroup network, enable NetBIOS over TCP/IP on the server and clients.
2. If this is domain network and the WINS server is on the same computer as the PPTP/VPN server, move the WINS server to a different computer.
3. Add the NetBEUI protocol for your PPTP tunnel instead of, or in addition to, TCP/IP.
4. By default, most routers and firewalls prevent the transmission of NetBIOS names unless you enable UDP ports 137 and 138 and TCP port 139. Try to enable UDP ports 137 and 138 and TCP port 139 across all routers and firewalls between the PPTP/VPN client and PPTP/VPN server.
5. Make sure the client has correct DNS, WINS and Master Browser settings.
6. Make sure the default gateway points to the remote network rather than to the ISP.  
7. Some ISP might block ports required for NetBIOS name broadcasts.
8. If WINS address is not distributed upon connection to VPN, LMHOSTS should be configured to enable Domain to be located.
9. If you try these techniques and the client still can't browse, try to use UNC to connect to the remote resources by ip, for example, use the net use h: \\serverip\sharename command.
0
 
blin2000Commented:
not usre the issue. do you mean that you can establish the VPN but cannot access to the files on 2000 server?
0
 
georgecooldudeAuthor Commented:
yeah we can establish a connection but then what do we do to access our files?

Never done this before so i need some explaining
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
dannyyoConnect With a Mentor Commented:
If you are accessing it from home make sure the IPSEC VPN is activated.  Then you can use terminal services to access the Server or use the UNC to access the files & directories (ie.  net use p: //serverip/c$).  You may have to stick with using the serverip, because the DNS can't resolve your servername.
0
 
georgecooldudeAuthor Commented:
Is there a way to setup the DNS? Some machines we want to connect to might have DHCP and can only be resolved by name.

Also what is UNC?
0
 
scrmcnaConnect With a Mentor Commented:
UNC is Universal Naming Convention.  I'm not very familiar with watchguards.  Are you connecting this VPN with a software client to your watchguard at your office or are you connecting two watchguards?
0
 
georgecooldudeAuthor Commented:
We will be using a Client (XP or 2000) connecting to the Watchguard firewall that should in theory let us onto our LAN.

So I guess were using a software client? We setup something on the firewall and then have this "key" that we use to connect to the firewall from
0
 
georgecooldudeAuthor Commented:
is it possible to connect to the computer hard from an IP?

like 192.168.1.1/C$ or something?
0
 
georgecooldudeAuthor Commented:
blin2000, scrmcna, dannyyo,

Thanks for you input.

I will be doing some testing later today. I will get back to you =)
0
 
georgecooldudeAuthor Commented:
Guys, I am sorry I have still be unable to test this.

How do you suggest I close this? I am aware you have all put effect into answering. A point refund is not what I want so is a point split between all 3 of you ok?
0
All Courses

From novice to tech pro — start learning today.