Best setup for VPN from MS OS to VPN server behind firewall
Posted on 2005-04-07
I have seen numerous explanations of the best way to setup VPN behind a firewall. While I agree with all of them (ie, DMZ, parallel, devices, etc.), I do not see a consensus on which ports actually need forwarding to the VPN server. I have seen port forward settings all over the board 47, 50, 51, TCP 50, UDP 4500, UDP 500, 1024, 1723, 5678, UDP 10000.
We have setup VPN successfully router to router on static tunnels, and for users running VPN client software, but what is the best way for home\traveling users to access the VPN tunnel using MS XP and the built in RRAS\RADIUS features of 2000/2003?
Does the VPN server need a legal IP address, or can it be private behind the firewall?
Thanks in advance.