FreemanWhite
asked on
configure a 2003 server VPN with only one network card
I'm thinking about setting up RRAS on a 2003 server to create VPN connections. We have another VPN solution but I'd like to explore other options. The way the network is set up now, all my servers are behind a firewall and only use one network adapter. I'd rather not reconfigure the entire network, so I want to use what is already set up. A lot of what I read though, the RRAS needs to use two NIC's. However, how difficult is it to set up a server with only one NIC as a VPN server? Anyone know of any good tutorials and/or walkthroughs? Anyone with experience doing this?
I think you need 2 NICS to enable VPN on a Windows Server. The NIC'S will also have to be on diffrent IP Ranges. I have not seen of way to create a VPN with only 1 Nic.
ASKER
Sorry for the confusion, I should clarify "all my servers are behind a firewall and only use one network adapter"..........My firewall does the public ip translation. I guess what I'm trying to explain is I have no perimeter network....just a firewall a router and all the servers behind the firewall.
2hype, no you dont need two nics,,, as i stated in my initial post it can be done with one since ive done it. I actually VPN into it every day, so i know it can be done.
how many public IPs do you have? do you have a "spare" public IP so you can to a 1 to 1 static mapping to the VPN server's private IP? that would be best.
ASKER
Yes, I have a few spare one's. How about if I were to use a server with an existing public IP? Could I just add a mapping in the sonicwall for PPTP that goes to that server? I found another article that says to use the private ip as the internet interface, and then configure the firewall to translate PPTP traffic sent to the public ip to the internal interface.....which I belive you're describing as well.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you, I will give this a shot, it sounds straightforward, but we all know what happenes when those words are spoken!
yeah,,, i had to do mine a few times with different options before it let me do it with only one NIC, but it can be done, but to the best of my memory the trick was to install a plain RRAS server first with nothing configured and then setup the VPN
when you say "all my servers are behind a firewall and only use one network adapter" do you mean you just have one public IP exposed? if so then you will have to forward GRE to your VPN server (which your router might not be able to do)
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/networking/rmotevpn.mspx
when you get to step 11 in the VPN section, just pick your one existing NIC.