I've got an old windows 2000 server that's currently running VPN for my company. This hardware is so old, it's been around longer then I have, and I've been here 9 years. Needless to say, it's starting to act flaky. I'm working on setting up a 2nd VPN server that will eventually replace the old one. I've taken some newer hardware, installed server 2003 SP2 and all the latest critical updates. I've got Dual NIC's installed on the server as well but I'm not sure how they should be configured. Currently, NIC 1 has an internal IP of X.X.1.19 with a gateway of X.X.1.2. NIC 2 has an external IP of X.X.X.169 with a gateway of X.X.X.161. When I configure the NIC's, windows pops up a message that I shouldn't have 2 different gateways.
First Question: Should I be leaving the gateway blank on one of the NIC cards?
After I've got the NIC's configured, I go through and configure the RRAS setup wizard selecting "Remote Access (dial-up or VPN)" and then selecting just the VPN checkbox. When prompted for "the network interface that connects this server to the internet" I select my NIC with the external IP address. I then specify that I want a range of IP addresses from X.X.2.50 to X.X.2.74. Lastly, I use Routing and Remote Access to authenticate requests. Once this is all set up, I run a few pings to sites on my WAN and make sure I can connect to the internet from the server. All looks good.
Second Question: Even though all looks good on the server and with no firewall between the server and the internet (except for the packet filtering that's automatically set up by the RRAS wizard) remote clients can't connect. They get an Error 800. What am I missing? All the tutorials I've seen on this make it seem so simple but I must be totally missing something.
Thanks in advance!