Solved

Setting up a VPN in Server 2008 using two NICs

Posted on 2011-09-13
21
563 Views
Last Modified: 2012-05-12
What is the best way to setup a VPN in Server 2008 using two network cards? Is there a step-by-step guide available for this configuration?
0
Comment
Question by:NWILSON4
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 11
  • 7
  • 3
21 Comments
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36531446
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36531490
I've looked at the article, but it doesn't really give me a step-by-step install guide. Thank you though.
0
 
LVL 5

Accepted Solution

by:
ErikCamacho earned 500 total points
ID: 36531632
0
Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

 
LVL 1

Author Comment

by:NWILSON4
ID: 36531657
Thank you Erik. That's the kind of article I was looking for. I will try this tonight and post my reply asap.
0
 
LVL 5

Expert Comment

by:ErikCamacho
ID: 36531678
Your welcome
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533363
I setup everything according to the support article; however, I am not able to connect from any computer outside of the network. I am able to connect to the VPN from the local area network, but not externally. I am using a Linksys router and I do have port 1723 forwarding to the 2008 Server, as well as PPTP passthrough enabled. Any suggestions?
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533388
What is the lan side address of the PC you are attempting to connect to? Is the remote PC attempting to connect to it have an Ip address on the same subnet? If so, that has to be changed since the Linksys will think its a connection coming from the local lan and cannot find said device.
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533394
Other than that, it may be a simple NAT issue. Let us know.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533420
The 2008 Server is on a 192.168.1.1 network, and the remote computer is on a 192.168.2.1 network. I made sure to make them different before I setup the VPN. Thanks
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533430
Can you post the exact model of your Linksys and the current firmware version for us please? Thanks in advance.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533431
Sure. The Linksys Router is a Wireless-G Broadband Router with SpeedBooster   WRT54GS
Firmware Version: v1.52.8  
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533481
Is the local server using a firewall? Have you either disabled it or placed an exception in the rules for it? Otherwise, follow the link below and verify your settings.

http://www6.nohold.net/Cisco2/ukp.aspx?pid=96&vw=1&articleid=4594

Hope this helps.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533493
I have disabled the firewall, and made sure that the exception is in place. Neither has resolved the issue. Also, the Linksys router does not have a VPN Tunnel option, only passthrough selections, which are all enabled. What else could be blocking an outside connection? As I said before, LAN connections to the VPN work just fine. It's the outside connections that aren't working.
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533513
I would first update your firmware on the linksys. This should allow for more options for tunneling(however, I caution this as you will need the model and exact version number of you router which can be found on the underside of the device and if you choose to do so, please do it from a PC that has a WIRED connection and not wireless). Secondly, ensure both ends are using the same encryption settings and they are attempting to access this server using your ACTUAL wan Ip address.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533528
Ok. I am not onsite right now, so I can't check for the exact hardware version of the router. Where can I check the encryption settings? And I think it could be a problem with NAT. Where can I make sure that the VPN pool is excluded from NAT rules?
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533610
After doing some further research on this(and your given firmware version) if you are using a v5 or 6 device you may be out of luck as there seems to be a bug when using PPTP. After you check your model/version of your device and compare your current firmware with the one currently available for download from:
http://homesupport.cisco.com/en-us/support/routers/WRT54GS/download

if they are the same then you are stuck with this bug in the code. There seems to be an issue with v5 > on those devices and the firmware available. As an alternative you can go and review open source codes available to achieve your intended use without having to purchase another router at:
http://www.dd-wrt.com
I've heard nothing but great reviews but its only a suggestion. You are advised to do so by your own choice as this voids any Linksys device warranty if one actually still exists. Just a suggestion.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36537196
I checked the hardware version of the Linksys WRT54GS router, and it's version 6. We are already running the latest firmware version 1.52.8. I plan on installing another Linksys router, version WRT54G, to see if I can get the VPN working through that one. I'll keep you posted on my results.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36554304
Sorry for the delayed reply. I am installing the other router early next week. I was not able to take down the Internet connection for their office. One thing though: Is there anything I should be checking on the Client side to make sure that everything is setup properly to connect to the VPN? I am using Windows XP and Windows 7 built-in VPN connection client to make the connection.
0
 
LVL 5

Expert Comment

by:ErikCamacho
ID: 36554323
Do you have a dmz option on your router to put your server on?
It may allow to to get past the pptp issues
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36554357
I put the Server on the DMZ, but I was still not able to make the VPN connection to Server 2008. I receive an error 800 on the client side. Is something not setup right on the Server now?

I followed the article that you sent at first:

http://www.thomasmaurer.ch/2010/10/how-to-install-vpn-on-windows-server-2008-r2/

One question though. What do they mean by this in the article?
Add secondary IP Address to the Server network interface which is in the same subnet as this pool.

0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36557376
OK. So I was able to make a VPN connection to the 2008 Server (I had to make sure that the encryption settings matched between the Server and the client side). Thank you for all of the help.
0

Featured Post

Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SSL-VPN Solution 8 36
Copy user profile 6 36
juniper ssg5 netscreen slow performance with vpn 6 42
another domain controller shut down question 2 42
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question