Steps to Setup VPN

Greetings,

I am a guy who maintains a small office by the seat of my pants...That said, I need a step by step solution to setup a VPN between a remote XP client and a XP Client within a domain at my office.  Both networks are behind a Juniper Netscreen 5 GT firewall and bear in mind that the data is medical and highly sensitive.  Please explain step by step for the clients setup and if necessary the server changes.  The server is running Windows 20003 Server.  Thank You in advance for your patience.


EdCon
EdConAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Jay_Jay70Commented:
0
EdConAuthor Commented:
I may have been too brief in my question...the primary compter that I need to connect to is acting as a server but is just a workstation within a domain. do i have to alter any settings on  the 2003 Server within the domain? or can i access the workstation directly without need to adjust the settings to the server.  what i have is this  Computer 1 - remote XP machine  Computer 2 - Windows Server 2003  Computer 3 - Windows Server 2003 Client.  All of these behind a Juniper Netscreen Firewall.  Which compurters do I need to setup VPN on?  Does the server need any settings changed? Do any particular services need to be running?

EdCon
0
Jay_Jay70Commented:
i would install VPN server on either of the 2003 machines
http://www.onecomputerguy.com/networking/w3k_vpn_server.htm

ther ports you need to open on your router are listed down the bottom also
0
Introducing the "443 Security Simplified" Podcast

This new podcast puts you inside the minds of leading white-hat hackers and security researchers. Hosts Marc Laliberte and Corey Nachreiner turn complex security concepts into easily understood and actionable insights on the latest cyber security headlines and trends.

CoccoBillCommented:
You need to setup the computer acting as the server to accept incoming VPN connections, and configure the client to open the connection:

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/networking/rmotevpn.mspx
0
Rant32Commented:
Personally, I would completely forget about Windows VPN networking and look at the firewall VPN solution. Juniper offers excellent networking products and poking a hole in the firewall to use Windows VPN just isn't the right solution if your data is really sensitive.

Is this the one?
http://www.juniper.net/products/integrated/dsheet/110034.pdf

This device can setup a VPN connection (also a dedicated VPN between two Netscreens), it can authenticate VPN users with Active Directory, it supports RSA/SecurID access tokens, it supports Certificates, very strong encryption, Syslogging... this seems to me a far more secure and reliable solution thanPPTP VPN. You already have the hardware for it!

I'm not proficient with Netscreen firewalls so I can't advise on its configuration, but one of the options I can recommend you hire some expertise for a couple of hours to get this solved and properly set up.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Jay_Jay70Commented:
i agree - was just providing an free solution but if you have some funds then avoid windows
0
Rant32Commented:
So, then the question to the poster is, what has priority? Good security or no cost?
0
EdConAuthor Commented:
Breachless Security id paramount.
0
Rant32Commented:
Unbreachable remote access is probably utopia,  but username/password control together with a security token (something you know AND something you have) is extremely secure if properly configured. This doesn't imply that this solution should be very expensive, though but a consultant doesn't come for free.

Any Netscreen experts around that can advise on the next step?
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.