GreyHippo
asked on
How to setup VPN on Windows Server 2003 which acts as a Doman Controller?
I previously setup a VPN on my Windows Server 2003 which acts as a Domain Controller and had some security issues, see Previous Question
Is there a secure way to setup a VPN on my Windows box or do I need to figure out another way to setup a VPN?
Is there a secure way to setup a VPN on my Windows box or do I need to figure out another way to setup a VPN?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
This is a complicated task. Essentially you need to set up RRAS (Routing and Remote Access Server) in the network and decide if you want the server in a DMZ zone ahead of your firewall or behind it. If behind it, ports need to be opened on your router/firewall to allow PPTP (Point to Point Protocol) Traffic or L2TP (Layer 2 Tunneling Protocol), which is more secure and requires certificates. The server acts like a router itself. More information on this can be found in MS KB323441 - http://support.microsoft.com/kb/323441
However, if you would like to do without then this article gives good info on what ports to open or forward: http://blogs.technet.com/b/rrasblog/archive/2007/06/13/ports-affecting-the-vpn-connectivity.aspx