VPN setup between 2 offices

Hi there

I'm hoping somebody will be able to assist me with my query.
Basically what I'm wanting to achieve is to setup a VPN between 2 remote offices.
Both offices are currently running as Workgroups.
Below is more info.

Office A:
Windows 2003 SBS (192.168.254.1)
Netgear DG834PN ADSL router (192.168.254.253 internal ip / 91.84.23.x external ip)

Office B:
Windows 2003 R2 Standard Edition Server (192.168.1.2)
Netgear DG834G ADSL router (192.168.1.1 internal ip / 91.84.204.x external ip)

I do have a spare Netgear DG834G ADSL router which could be used at Office A instead of the Netgear DG834PN ADSL router if it would make things easier. From what I read up online about VPN's, it seems most of the setup occurs on the router side. However I'm not sure on all the port forwarding side of things. Any advice or help would be appreciated.

Regards
Kevin




qrmiAsked:
Who is Participating?
 
Michael WorshamConnect With a Mentor Infrastructure / Solutions ArchitectCommented:
The Linksys RV units are business class. They are the closest thing to a Cisco ASA device, but just much easier to configure and setup, especially for long term needs.

Just remember you are going to need two RV082 units for the VPN tunnel. Just stay away from the RV042 (never really liked them as they were only 4 ports, thus limiting). The RV082's are eight port, thus giving you enough ports if you want to add in additional network switches, etc.

Linksys does offer a wireless VPN endpoint (WRV54G), however these things are lousy and the reviews are even worse. The problem with the WRV54G is they were not made for business needs but more for home use.

For the best security and ease of use, I would go with the RV082 and just using the NetGear wireless router as an AP. Wireless APs usually have sort life expectancies as well, thus cheap and easily replaceable. The RV unit is a hardened piece of equipment so it can handle abuse for long periods of time.

Also, if you have a question about the RV unit on setting up the VPN tunnel and getting NetBIOS to work through the tunnel, take a look at my EE profile on how to contact me and I can lead you through it. The Linksys manual is very well written and makes setting up VPN tunnels a nice and quick task to accomplish.
0
 
Michael WorshamInfrastructure / Solutions ArchitectCommented:
The routers need to be VPN endpoint routers if you are looking at setting up a VPN tunnel between the two sites.

Example of VPN endpoint routers: Linksys RV082, NetGear DGFV338B
0
 
qrmiAuthor Commented:
Thanks for your suggestion.
I'm not 100% sure what you mean by VPN endpoint routers?
I'm guessing that my basic Netgear routers arn't up for the job then!
So assuming I was to purchase x2 "VPN endpoint routers" would that allow me to have a permanent
VPN link between my 2 sites?
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
Michael WorshamInfrastructure / Solutions ArchitectCommented:
No. Basic Netgear routers are for VPN throughput -- meaning you can setup the Netgear router at the SBS side to do port forwarding for the VPN ports from the router to the SBS server (as long as RRAS has been setup on the SBS server), but the other office location would have to run a VPN client on the workstations to connect to the SBS server location.

If you want a permanent VPN connection between the sites, you are going to have to purchase a two VPN endpoint routers then setup a VPN tunnel between the two. Since you will most likely want to map drives from the remote site to the SBS server, you want to make sure the VPN endpoint router you choose has a NetBIOS via VPN configuration available.

NOTE: The Linksys RV082 units have exactly what you need and are the easiest to setup, both for VPN tunnels and port forwarding needs if you want to allow external VPN clients to access the SBS server from home, on the road, etc. Just remember to disable DHCP on the router where the SBS server is utilized or it will compete with it. If your Server 2003 is not using DHCP, have the other VPN endpoint handle it and you won't have any problems.

Linksys RV082 Information:
http://www.linksys.com/servlet/Satellite?c=L_Product_C2&childpagename=US%2FLayout&cid=1115416833289&pagename=Linksys%2FCommon%2FVisitorWrapper&lid=3328954480B03

If you need wireless support, I recommend still keeping the basic wireless Netgear routers you have and just setting them up as access points (APs) for your network. All you need to do is just give the wireless router a static IP on the network and then just plug them into the VPN endpoint router.
0
 
qrmiAuthor Commented:
I'll follow your suggested advice and look into purchasing the necessary equipment to get this working.
Am I correct in assuming that once I've bought this Linksys RV082 router, that I would plug the DSL line straight into this unit instead of the old Netgear router at both sites. Then just plug each Netgear router into the Linksys with a static IP address of the local LAN to provide wireless access for the local LAN?

Do you happen to know if Linksys might have a VPN endpoint router that also has wireless capabilites
or is it better to just stick to the Linksys RV082 and use the Netgear as AP's?
0
 
rahulmigCommented:
Is there any pd file on net which can tell me step by step configuration of VPN RV082 Router
0
All Courses

From novice to tech pro — start learning today.