multiple VPN logons to server

Posted on 2009-12-26
Last Modified: 2013-11-05
Does WS2008 support multiple PPTP VPN logons? I know NT does but XP only supports one at a time?

Related question: does WS2008 support IPSec connections directly? In another place I used IPSec connections to a router and got to the LAN from there. I no longer have an IPSec router -- can I establish IPSec connections directly to WS2008.
Question by:Scott Helmers
    LVL 67

    Accepted Solution

    Windows Server 2008 is a server OS, and hence allows for more than one VPN connection. XP does indeed only allow a single one, as it is a desktop (or client) OS.

    Besides the VPN connection, there is a limit of interactive logins, i.e. sessions with a visual Desktop, using the Console or RDP. Desktop OS allows for a single session at a time (but for simultanous inactive sessions - "Fast User Switching"). Server OS allow for at least 2 (admin) RDP sessions in addition to the Console.

    W2008 allows for IPSec (it is supported since W2000), but it is not intended to be used for dial-in connections. The purpose is to build an encrypted connection for security-enhanced workstations or servers on a LAN, and is policy-based (GPO). For a always-on connection via Internet, it might be useful. What has changed with W2008 (Vista) is that you can manage per Windows Firewall GUI, previously you had to customize GPOs.
    W7 (and I suppose W2008R2) support IPSec connections, based on IKEv2, which is not supported by many VPN software or devices.

    For occasional connections I recommend to use PPTP with a good password (which is used for encryption, hence it should not be short and trivial). If the W2008 server is exposed to the Internet, you should not have problems with that configuration. If there is a router in-between, you might have GRE-NAT-issues, and no connection is established.

    Another, more secure way as PPTP, to connect is using L2TP/IPSec with a Pre-Shared Key. The encryption is better than with PPTP, and it has less connection problems in conjunction with NAT.
    LVL 30

    Author Closing Comment

    by:Scott Helmers
    Thanks for all of the useful info. I currently have PPTP working to the XP box via a router with PPTP pass-through. If I decide to move the box to WS2008, I'll probably continue to use PPTP (with strong passwords) based on your comments.

    Featured Post

    How to improve team productivity

    Quip adds documents, spreadsheets, and tasklists to your Slack experience
    - Elevate ideas to Quip docs
    - Share Quip docs in Slack
    - Get notified of changes to your docs
    - Available on iOS/Android/Desktop/Web
    - Online/Offline

    Join & Write a Comment

    Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
    New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
    This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
    This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

    745 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    15 Experts available now in Live!

    Get 1:1 Help Now