Solved

Setting up a VPN in Server 2008 using two NICs

Posted on 2011-09-13
21
562 Views
Last Modified: 2012-05-12
What is the best way to setup a VPN in Server 2008 using two network cards? Is there a step-by-step guide available for this configuration?
0
Comment
Question by:NWILSON4
  • 11
  • 7
  • 3
21 Comments
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36531446
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36531490
I've looked at the article, but it doesn't really give me a step-by-step install guide. Thank you though.
0
 
LVL 5

Accepted Solution

by:
ErikCamacho earned 500 total points
ID: 36531632
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 1

Author Comment

by:NWILSON4
ID: 36531657
Thank you Erik. That's the kind of article I was looking for. I will try this tonight and post my reply asap.
0
 
LVL 5

Expert Comment

by:ErikCamacho
ID: 36531678
Your welcome
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533363
I setup everything according to the support article; however, I am not able to connect from any computer outside of the network. I am able to connect to the VPN from the local area network, but not externally. I am using a Linksys router and I do have port 1723 forwarding to the 2008 Server, as well as PPTP passthrough enabled. Any suggestions?
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533388
What is the lan side address of the PC you are attempting to connect to? Is the remote PC attempting to connect to it have an Ip address on the same subnet? If so, that has to be changed since the Linksys will think its a connection coming from the local lan and cannot find said device.
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533394
Other than that, it may be a simple NAT issue. Let us know.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533420
The 2008 Server is on a 192.168.1.1 network, and the remote computer is on a 192.168.2.1 network. I made sure to make them different before I setup the VPN. Thanks
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533430
Can you post the exact model of your Linksys and the current firmware version for us please? Thanks in advance.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533431
Sure. The Linksys Router is a Wireless-G Broadband Router with SpeedBooster   WRT54GS
Firmware Version: v1.52.8  
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533481
Is the local server using a firewall? Have you either disabled it or placed an exception in the rules for it? Otherwise, follow the link below and verify your settings.

http://www6.nohold.net/Cisco2/ukp.aspx?pid=96&vw=1&articleid=4594

Hope this helps.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533493
I have disabled the firewall, and made sure that the exception is in place. Neither has resolved the issue. Also, the Linksys router does not have a VPN Tunnel option, only passthrough selections, which are all enabled. What else could be blocking an outside connection? As I said before, LAN connections to the VPN work just fine. It's the outside connections that aren't working.
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533513
I would first update your firmware on the linksys. This should allow for more options for tunneling(however, I caution this as you will need the model and exact version number of you router which can be found on the underside of the device and if you choose to do so, please do it from a PC that has a WIRED connection and not wireless). Secondly, ensure both ends are using the same encryption settings and they are attempting to access this server using your ACTUAL wan Ip address.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36533528
Ok. I am not onsite right now, so I can't check for the exact hardware version of the router. Where can I check the encryption settings? And I think it could be a problem with NAT. Where can I make sure that the VPN pool is excluded from NAT rules?
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 36533610
After doing some further research on this(and your given firmware version) if you are using a v5 or 6 device you may be out of luck as there seems to be a bug when using PPTP. After you check your model/version of your device and compare your current firmware with the one currently available for download from:
http://homesupport.cisco.com/en-us/support/routers/WRT54GS/download

if they are the same then you are stuck with this bug in the code. There seems to be an issue with v5 > on those devices and the firmware available. As an alternative you can go and review open source codes available to achieve your intended use without having to purchase another router at:
http://www.dd-wrt.com
I've heard nothing but great reviews but its only a suggestion. You are advised to do so by your own choice as this voids any Linksys device warranty if one actually still exists. Just a suggestion.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36537196
I checked the hardware version of the Linksys WRT54GS router, and it's version 6. We are already running the latest firmware version 1.52.8. I plan on installing another Linksys router, version WRT54G, to see if I can get the VPN working through that one. I'll keep you posted on my results.
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36554304
Sorry for the delayed reply. I am installing the other router early next week. I was not able to take down the Internet connection for their office. One thing though: Is there anything I should be checking on the Client side to make sure that everything is setup properly to connect to the VPN? I am using Windows XP and Windows 7 built-in VPN connection client to make the connection.
0
 
LVL 5

Expert Comment

by:ErikCamacho
ID: 36554323
Do you have a dmz option on your router to put your server on?
It may allow to to get past the pptp issues
0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36554357
I put the Server on the DMZ, but I was still not able to make the VPN connection to Server 2008. I receive an error 800 on the client side. Is something not setup right on the Server now?

I followed the article that you sent at first:

http://www.thomasmaurer.ch/2010/10/how-to-install-vpn-on-windows-server-2008-r2/

One question though. What do they mean by this in the article?
Add secondary IP Address to the Server network interface which is in the same subnet as this pool.

0
 
LVL 1

Author Comment

by:NWILSON4
ID: 36557376
OK. So I was able to make a VPN connection to the 2008 Server (I had to make sure that the encryption settings matched between the Server and the client side). Thank you for all of the help.
0

Featured Post

Register Today - IoT Current and Future Threats

Are you prepared to protect your organization from current and future IoT Threats?  Join our Wi-Fi expert in episode three of our webinar series for a look at the current state of Wi-Fi IoT and what may lie ahead. Register for our live webinar on April 20th at 9 am PDT!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
NTP problem 24 74
Smart Start CD for HP proliant ML110 G6 3 51
VPN Server Configuration in windows 7 7 36
SBS2011 VPN users no longer connecting 4 23
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

713 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question