[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 362
  • Last Modified:

Simple VPN solutions question?

Trying to setup a simple VPN

I have 10 pcs and a 2003 SBS running active directory and file sharing connected to one hub.

I have this hub then connected to a Cisco Pix firewall.  I am trying to setup VPN.

This is the solution I am proposing....

Install a second Network Card in the Server and run the cable straight to the Pix Firewall bypassing the hub.  Assign the new NIC one of the static IP address provided by my ISP and run the Remote Access Wizard for VPN on the 2003 server.

Does this sound like a viable solution?  I have been reading about VPN setups and I haven't seen a setup that uses the main server for the the network also as the VPN server.  Don't know if what I am proposing is secure or the correct way to do it.  Read about some DMZs and stuff.....   Any advice would be greatly appreciated.  Thank you.

Here is a diagram

10 PCs      2003 SBS
 |__________|   |
           |            |
         hub          |
           |______ |
              cisco pix

1 Solution
A better solution may be to configure a Network Address Translation or Port Address Translation on the Firewall to the Internal address of the SBS Server.  Where you will have the routing and remote access configured.  This will not require a second network card.  

If you are using SBS Premium you could install a second network card and configure ISA Server for additional security.  In this case you would not connect the hub directly to the firewall but rather connect the hub to the PCs and Server and then using the new interface in the server connect the server directly to the firewall.

Use the firewall policy in both cases to limit the ports which can reach the SBS server.

Alternatively you could use the VPN capabilities in the Pix.

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now