Setting up VPN - access to a remote corporate server

Posted on 2006-05-14
Last Modified: 2010-03-19
Hello Experts,

I have recently joined a new company and have been asked to identify "opportunities for improvement".  This company has five manufacturing plants, a sales office in Michigan, and an office in the UK.  The first thing that "sent me into shock" was that none of these facilities are able to access any shared or central server so that the sites can review data and collaborate in real time.

On my wish list is to set up "vpn" access to a central server so these sites can share work product or access shared documents (pdf format).  In my 2 week honey moon, I have reason to question the quality and knowledge of the IT staff.  

Although the main facility does have XP server, they have the network set up as a workgroup rather than a domain.  Additionally, they use static IP's.............

My question is, what is the first step in making this happen?  

I am being told that due to the static IP scheme, they (IT) can not set up remote access to the server - although I am an engineer by profession, I do know enough to quesiton and detemine if I am being fed a load of crap.  In this instance, I am not sure as my IT knowledge is mostly limted to client machines, hardware, and home networking.  This is my first dive into corporate IT infrastruture.

Thanks in advance, I know one of the wizards here will point me down the right path.


Question by:skacines
    LVL 77

    Expert Comment

    by:Rob Williams
    You mention they have XP server??? I assume Windows 2003 server?
    Setting up a VPN between sites can be done quite easily if you have 2000 or 2003 server in place. Below are the very simple walk though instructions. As for DHCP, it is common to use it with VPN's, but by no means necessary. You can enable it on the server and still leave your static IP's in place, so long as you do not have 2 DHCP servers on the same domain, such as a DHCP server and  a router issuing DHCP.
    2000 server VPN
    2003 server VPN
    XP VPN client
    You will also have to set up port forwarding for the router at the server site. Port 1723 must be forwarded to the server on the router and PPTP pass-through enabled to allow GRE traffic to pass. Good instructions can be fount at the following site. Click on the link for your router and then the link for Point to Point Tunneling Protocol:

    It is also possible to set up a server to server VPN for each site. However, the way you really should consider doing this is ignoring all of the above and buying a VPN router for each site. They can cost thousands of dollars but the Linksys RV042 for about $200 US would probably do nicely for your situation. With the router, the tunnel is always "up", and all devices on each site can easily communicate bi-directionally.
    LVL 12

    Expert Comment

    Before you go for the VPN, you need to know the network address of all the 3 sites.

    no 2 sites must have same network address.
    As RobWill said the best way is using a VPN Router. However all the Sites have routers to connect to internet. These days most of the routers come with Site-to-Site VPN capability.
    Your Current router Model numbers would be helpful

    LVL 77

    Accepted Solution

    skacines, did you find this information useful?
    LVL 77

    Expert Comment

    by:Rob Williams
    Thanks skacines,

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    Some time ago I was asked to set up a web portal PC to put at our entrance. When customers arrive, they could see a webpage 'promoting' our company. So I tried to set up a windows 7 PC as a kiosk PC.......... I will spare you all the annoyances I…
    Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor ( If you're interested in additional methods for monitoring bandwidt…

    794 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now