WS2008 RRAS VPN Server on a single NIC?

Posted on 2009-04-16
Last Modified: 2012-05-06

I would like to test out a multiple site A.D. domain with two servers, on different subnets, each sitting behind it's own Linksys router (WRT54GL).  The idea would be to have Active Directory replicate securely over a VPN.  The machines would connect over the public Internet, through the WRT54GL's.  Everything I have read so far alludes to WS2008 RRAS having two NICs for this type of setup.  Is that totally necessary, since I have the routers?

Am I barking up the wrong tree?
Question by:Jason Watkins
    LVL 10

    Expert Comment

    by:Vince Glisson
    If you have the routers then there is no reason to use RRAS.
    I have a similar setup and it works fine for point to point connection, now if you have users who need to dial in then RRAS will need to be running to accept those in coming connections as it handles all the VPN stuff for the clients.
    LVL 27

    Author Comment

    by:Jason Watkins
    If you would permit another question, then how are the two endpoints connected?  Basically where in Active Directory Sites & Services is there a way to configure the IP address of the second site's router IP?

    LVL 10

    Accepted Solution

    You really need two identical VPN routers, one at each end.  

    Will there be static IP's at each end, it would be much better if there static.
    here is more info for you
    In the help screens for AD SS there is a checklist of things to do to set it up. It also goes thru many of the concerns about setting this up, like link speed, replication, glonal catalog, etc.. it is worth the read..
    LVL 27

    Author Comment

    by:Jason Watkins
    The WRT54GL's are the same type and firmware, but they are not specifically designed as VPN routers.  Each router will have a static IP address, unique to the public Internet.

    I can't get my mind around how the DNS client on one end finds the VPN server's private IP address on the other end.  Each involved has a private IP (192.168.x.x/24).  DNS for the domain uses this private IP, so how does ADSS know which public IP to use for finding the private IP?



    Featured Post

    How to improve team productivity

    Quip adds documents, spreadsheets, and tasklists to your Slack experience
    - Elevate ideas to Quip docs
    - Share Quip docs in Slack
    - Get notified of changes to your docs
    - Available on iOS/Android/Desktop/Web
    - Online/Offline

    Join & Write a Comment

    Introduction: Sometimes when I receive a call from my users to solve their problems it is very difficult for me to found their computer IP address. Even finding their computer Host to provide remote support can be a problem.  So I resorted to Goo…
    Experts-Exchange users below are the steps you can follow to upgrade your Lync server to latest CU's or cumulative updates. Note: Perform it during non-production hours.   Step 1: Backup your lync and SQL server database. Follow below article: h…
    Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
    In this sixth video of the Xpdf series, we discuss and demonstrate the PDFtoPNG utility, which converts a multi-page PDF file to separate color, grayscale, or monochrome PNG files, creating one PNG file for each page in the PDF. It does this via a c…

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now