[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 449
  • Last Modified:

Steps to Setup VPN

Greetings,

I am a guy who maintains a small office by the seat of my pants...That said, I need a step by step solution to setup a VPN between a remote XP client and a XP Client within a domain at my office.  Both networks are behind a Juniper Netscreen 5 GT firewall and bear in mind that the data is medical and highly sensitive.  Please explain step by step for the clients setup and if necessary the server changes.  The server is running Windows 20003 Server.  Thank You in advance for your patience.


EdCon
0
EdCon
Asked:
EdCon
  • 3
  • 3
  • 2
  • +1
1 Solution
 
Jay_Jay70Commented:
0
 
EdConAuthor Commented:
I may have been too brief in my question...the primary compter that I need to connect to is acting as a server but is just a workstation within a domain. do i have to alter any settings on  the 2003 Server within the domain? or can i access the workstation directly without need to adjust the settings to the server.  what i have is this  Computer 1 - remote XP machine  Computer 2 - Windows Server 2003  Computer 3 - Windows Server 2003 Client.  All of these behind a Juniper Netscreen Firewall.  Which compurters do I need to setup VPN on?  Does the server need any settings changed? Do any particular services need to be running?

EdCon
0
 
Jay_Jay70Commented:
i would install VPN server on either of the 2003 machines
http://www.onecomputerguy.com/networking/w3k_vpn_server.htm

ther ports you need to open on your router are listed down the bottom also
0
2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

 
CoccoBillCommented:
You need to setup the computer acting as the server to accept incoming VPN connections, and configure the client to open the connection:

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/networking/rmotevpn.mspx
0
 
Rant32Commented:
Personally, I would completely forget about Windows VPN networking and look at the firewall VPN solution. Juniper offers excellent networking products and poking a hole in the firewall to use Windows VPN just isn't the right solution if your data is really sensitive.

Is this the one?
http://www.juniper.net/products/integrated/dsheet/110034.pdf

This device can setup a VPN connection (also a dedicated VPN between two Netscreens), it can authenticate VPN users with Active Directory, it supports RSA/SecurID access tokens, it supports Certificates, very strong encryption, Syslogging... this seems to me a far more secure and reliable solution thanPPTP VPN. You already have the hardware for it!

I'm not proficient with Netscreen firewalls so I can't advise on its configuration, but one of the options I can recommend you hire some expertise for a couple of hours to get this solved and properly set up.
0
 
Jay_Jay70Commented:
i agree - was just providing an free solution but if you have some funds then avoid windows
0
 
Rant32Commented:
So, then the question to the poster is, what has priority? Good security or no cost?
0
 
EdConAuthor Commented:
Breachless Security id paramount.
0
 
Rant32Commented:
Unbreachable remote access is probably utopia,  but username/password control together with a security token (something you know AND something you have) is extremely secure if properly configured. This doesn't imply that this solution should be very expensive, though but a consultant doesn't come for free.

Any Netscreen experts around that can advise on the next step?
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now