Link to home
Start Free TrialLog in
Avatar of DanJourno
DanJournoFlag for United Kingdom of Great Britain and Northern Ireland

asked on

Site to Site VPN using Windows Server 2003

Hi,

I have a client who has recently replaced their router which had built-in support for IPSec VPN.

They've got two sites which were connected via an IPSec VPN. However the new router doesn't support Site to Site VPN.

One site has a Windows Server 2003 (SBS), and the other site has a Windows Server 2008 (standard).

Whats the best way to rejoin the two sites? Is it possible to do it using the servers?

Thanks
Dan
ASKER CERTIFIED SOLUTION
Avatar of asavener
asavener
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of DanJourno

ASKER

Hi,

Ok, I've got the two servers connected and they can see each other perfectly.

But how can I get the clients on both networks to use the VPN connection?

Thanks
Dan
I realise that I have to make a static route on all the client machines, probably using a script and group policy. However, most of the users are not administrators to the ROUTE ADD command will fail.
First, test a client to make sure that allows access to the other subnet.

Second, you should have a default gateway on your network(s), and you should be able to just add a route there.

Third, if you have to add static routes on all of the clients, you can use a remote management tool like powerscript, or psexec to push the setting onto all of the clients.  (I would recommend psexec, which you can download from Microsoft.)  Make sure you use the -p option when using route add, so that you will only have to add the route once.
Seems to be working perfectly.

Thanks
Dan