VPN Overview

Posted on 2005-05-03
Medium Priority
Last Modified: 2010-04-10
I am thinking about setting up a VPN in my office.  I have no experience with vpn's.  The server is a Windows 2003 server sitting behind a proxy server.  Obviously  I will use Microsoft as a resource for doing it, but does anyone have any tips to save me some aches and pains?

Question by:bridgetimiller
  • 2

Expert Comment

ID: 13922061
The only thing I would mention is that this solution (I think) will use PPTP as the protocal.  This is not secure enough to meet our companies standards.  We opted to purchase a cisco VPN device that uses IPSec encryption, which is very secure.   You may have issues using pptp over your proxy, depending on how 'smart' you proxy server is.

Good luck,

Accepted Solution

pcavenue earned 2000 total points
ID: 13931555
ok, here is the steps to setup a 2003 server as a vpn device

1.      make sure you have two nicks
2.      in network properties, configure the connection with the seccond nic, and rename it something like "VPN".  you also may want to give it a stadic ip address
3.      make sure you have routing and remote access installed (add remove programs)
4.      start | programs | routing and remote access
5.      if it hasnt been configured, click on action, then "configure and enable"
6.      next
7.      select vpn
8.      make sure proper protocols are in
9.      select correct nic (connection should have name like VPN)
10.      specify how ip addresses are going to be given out
11.      select no on RADIUS server, unless you know you want it
12.      then the vpn server (service) tries to start

I suggest using a linksys rv042, 170  because its part of cisco, can connect tons of cients to it using ipsec (not pptp), and has its own client software, the other option is to use www.snapgear.com 's pptp unix appliance, about 250.

depending on your current router setup you need to put the ms vpn server in  a dmz zone because most routers only recognize one pptp connection, meaning the seccond incoming connectin trying to hit the server would confuse the router.  

I have tons of clients using linksys devices, and that snapgear thing, I got frustrated with MS's version of it years ago, but I know you have your reasons.


Expert Comment

ID: 13990471
thanks, i would love to know if you went for my sales pitch on third party connectivity devices insted of MS's software solution, but thanks....

Author Comment

ID: 13990523
It's all still pretty confusing to me, but it definitely gives me a place to start.  If Microsoft only allows one router, then I would have to go with a 3rd party - so I would probably go with what you recommend, as I don't know anything about anything else :)  I think I would lean towards the linsys, not the snapgear.  

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will show you step-by-step instructions to build your own NTP CentOS server.  The network diagram shows the best practice to setup the NTP server farm for redundancy.  This article also serves as your NTP server documentation.
LinkedIn blogging is great for networking, building up an audience, and expanding your influence as well. However, if you want to achieve these results, you need to work really hard to make your post worth liking and sharing. Here are 4 tips that ca…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question