Solved

RRAS VPN through Watchguard

Posted on 2006-11-22
6
565 Views
Last Modified: 2010-08-05
Hello,
I have a Watchguard Firbox 1000 and a RRAS server behind it on the trusted network.  I Installed RRAS and when I configured PPTP it does not allow a NAT.  Originally I was going to use TermServ for a remote solution, however one of our apps will not run on Term Serv so I am left with VPN for remote users.  
I have used MUVPN in the past and it is great to connect to the Firebox, however its pass through using hosts and lmhosts files to do the resolution to get file structures has been less than exemplary.

How to I configure the Firebox to pass the traffic to the RRAS server and get the VPN configured on the clients to simply tunnel in and use the programs on their local machines but use the resources on the server?

Single Domain - 3 DC's - 5 servers total - RRAS server is also Term Services Server and that is all.  All servers are behind firewall on trusted port.  Server OS are all Server 2003 R2 and clients are all XP Pro SP2.

Thank you in advance - the points are for difficulty as I have banged my head against Watchguard VPNs before.
0
Comment
Question by:visionmn2
  • 3
6 Comments
 
LVL 4

Expert Comment

by:LBACIS
Comment Utility
why you can use DNS on the firebox to resolve you don't need to use lmhost.
0
 

Author Comment

by:visionmn2
Comment Utility
How does one go about adding this feature so it does not mess anything up?
0
 
LVL 4

Expert Comment

by:LBACIS
Comment Utility
Point the network settings of the firewall to the internal DC's which of course are also your internal DNS servers.
0
 
LVL 4

Accepted Solution

by:
LBACIS earned 500 total points
Comment Utility
I am sorry I have forgotten use PPTP more secure than RAS and with using PPTP the internal DNS will pass all of your DNS info since it becomes a virual network connection. Make sure you uncheck use default gateway or when your users connect they will get locked into only using thier network for all traffic. If you need more detail just let me know.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
VTP LOG RUNTTIME ERROR 31 125
Project Plan to change subnet mask 6 70
loop Guard /UDLD 5 35
EIGRP Full Mesh 2 30
This article is a guide to configure bridging on Cisco Routers.  This is something I never knew was possible until after making a few phone calls to Cisco.  Using bridging saved our company money by not requiring us to purchase a new switch.  Bridgi…
I have seen some questions on problems with SSH/telnet access to Cisco routers that may occur despite the fact that from a PC connected to your LAN, Internet connectivity is in place and users can access Internet sites without any issues.  There are…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now