Solved

Setting up a VPN in Server 2008 using two NICs

Posted on 2011-09-13
21
561 Views
Last Modified: 2012-05-12
What is the best way to setup a VPN in Server 2008 using two network cards? Is there a step-by-step guide available for this configuration?
0
Comment
Question by:NWILSON4
  • 11
  • 7
  • 3
21 Comments
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36531446
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36531490
I've looked at the article, but it doesn't really give me a step-by-step install guide. Thank you though.
0
 
LVL 5

Accepted Solution

by:
ErikCamacho earned 500 total points
ID: 36531632
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 1

Author Comment

by:NWILSON4
ID: 36531657
Thank you Erik. That's the kind of article I was looking for. I will try this tonight and post my reply asap.
0
 
LVL 5

Expert Comment

by:ErikCamacho
ID: 36531678
Your welcome
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533363
I setup everything according to the support article; however, I am not able to connect from any computer outside of the network. I am able to connect to the VPN from the local area network, but not externally. I am using a Linksys router and I do have port 1723 forwarding to the 2008 Server, as well as PPTP passthrough enabled. Any suggestions?
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533388
What is the lan side address of the PC you are attempting to connect to? Is the remote PC attempting to connect to it have an Ip address on the same subnet? If so, that has to be changed since the Linksys will think its a connection coming from the local lan and cannot find said device.
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533394
Other than that, it may be a simple NAT issue. Let us know.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533420
The 2008 Server is on a 192.168.1.1 network, and the remote computer is on a 192.168.2.1 network. I made sure to make them different before I setup the VPN. Thanks
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533430
Can you post the exact model of your Linksys and the current firmware version for us please? Thanks in advance.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533431
Sure. The Linksys Router is a Wireless-G Broadband Router with SpeedBooster   WRT54GS
Firmware Version: v1.52.8  
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533481
Is the local server using a firewall? Have you either disabled it or placed an exception in the rules for it? Otherwise, follow the link below and verify your settings.

http://www6.nohold.net/Cisco2/ukp.aspx?pid=96&vw=1&articleid=4594

Hope this helps.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533493
I have disabled the firewall, and made sure that the exception is in place. Neither has resolved the issue. Also, the Linksys router does not have a VPN Tunnel option, only passthrough selections, which are all enabled. What else could be blocking an outside connection? As I said before, LAN connections to the VPN work just fine. It's the outside connections that aren't working.
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533513
I would first update your firmware on the linksys. This should allow for more options for tunneling(however, I caution this as you will need the model and exact version number of you router which can be found on the underside of the device and if you choose to do so, please do it from a PC that has a WIRED connection and not wireless). Secondly, ensure both ends are using the same encryption settings and they are attempting to access this server using your ACTUAL wan Ip address.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533528
Ok. I am not onsite right now, so I can't check for the exact hardware version of the router. Where can I check the encryption settings? And I think it could be a problem with NAT. Where can I make sure that the VPN pool is excluded from NAT rules?
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533610
After doing some further research on this(and your given firmware version) if you are using a v5 or 6 device you may be out of luck as there seems to be a bug when using PPTP. After you check your model/version of your device and compare your current firmware with the one currently available for download from:
http://homesupport.cisco.com/en-us/support/routers/WRT54GS/download

if they are the same then you are stuck with this bug in the code. There seems to be an issue with v5 > on those devices and the firmware available. As an alternative you can go and review open source codes available to achieve your intended use without having to purchase another router at:
http://www.dd-wrt.com
I've heard nothing but great reviews but its only a suggestion. You are advised to do so by your own choice as this voids any Linksys device warranty if one actually still exists. Just a suggestion.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36537196
I checked the hardware version of the Linksys WRT54GS router, and it's version 6. We are already running the latest firmware version 1.52.8. I plan on installing another Linksys router, version WRT54G, to see if I can get the VPN working through that one. I'll keep you posted on my results.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36554304
Sorry for the delayed reply. I am installing the other router early next week. I was not able to take down the Internet connection for their office. One thing though: Is there anything I should be checking on the Client side to make sure that everything is setup properly to connect to the VPN? I am using Windows XP and Windows 7 built-in VPN connection client to make the connection.
0
 
LVL 5

Expert Comment

by:ErikCamacho
ID: 36554323
Do you have a dmz option on your router to put your server on?
It may allow to to get past the pptp issues
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36554357
I put the Server on the DMZ, but I was still not able to make the VPN connection to Server 2008. I receive an error 800 on the client side. Is something not setup right on the Server now?

I followed the article that you sent at first:

http://www.thomasmaurer.ch/2010/10/how-to-install-vpn-on-windows-server-2008-r2/

One question though. What do they mean by this in the article?
Add secondary IP Address to the Server network interface which is in the same subnet as this pool.

0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36557376
OK. So I was able to make a VPN connection to the 2008 Server (I had to make sure that the encryption settings matched between the Server and the client side). Thank you for all of the help.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question