xbrady
asked on
how to set up simple VPN on Windows server 2008 with a username/password
I'm using Windows Server 2008. Currently I have IIS installed and I'm hosting a few web sites. What I'd like to know is if I can install a VPN server on this same machine so that I can have other people, VPN in and we can play LAN games. Is this going to be possible? I only have one NIC on this machine. I already installed the VPN using a guide I found online but I don't know how to set it up so the clients can just put in a username/password to connect.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
>>"You also have to grant the user permission to use the VPN connection."
Yes, sorry, that is what I meant by; "The users that are connecting to the VPN need to have allow access enabled under the dial-in tab of their profile in active directory"
Name resolution can be problematic over VPN's, and anything that requires browsing may not work as this relies on NetBIOS broadcasts, and broadcast packets are not forwarded over a VPN. The solution is WINS, but requires a WINS server at each location, which synchronizes the client database.
However, name resolution can be "fixed" using WINS and DNS, which will allow most applications to work. Rather than reprint in entirety, have a look at my Blog, regarding VPN client name resolution:
http://msmvps.com/blogs/robwill/archive/2008/05/10/vpn-client-name-resolution.aspx
Yes, sorry, that is what I meant by; "The users that are connecting to the VPN need to have allow access enabled under the dial-in tab of their profile in active directory"
Name resolution can be problematic over VPN's, and anything that requires browsing may not work as this relies on NetBIOS broadcasts, and broadcast packets are not forwarded over a VPN. The solution is WINS, but requires a WINS server at each location, which synchronizes the client database.
However, name resolution can be "fixed" using WINS and DNS, which will allow most applications to work. Rather than reprint in entirety, have a look at my Blog, regarding VPN client name resolution:
http://msmvps.com/blogs/robwill/archive/2008/05/10/vpn-client-name-resolution.aspx
Thanks xbrady.
Cheers!
--Rob
Cheers!
--Rob
ASKER
You also have to grant the user permission to use the VPN connection. To do so, open Active Directory Users and Computers, view the appropriate user profile, and on the "Dial-in" tab select "Allow access".
After selecting Allow Access the connection worked perfectly. We can now put in each others IPs when connecting to each others shared files and folders. However I am still having one problem. When we try to play any pc games that connect over a LAN and have a lobby type system we never show up in each others lobbies. There are games where you can manually type in the IP address and connect to a game and that works fine but none of the games where one person hosts and the clients have a lobby where the game automatically pops up on the list. Is there something special that I need to set up to get this to work? Setting up a WINS server wouldn't help this correct?
Thanks again for your help.