Just started process of setting up a vpn server on one of our windows 2003 servers and had a questions regarding the setup of the 2 nic cards on the server. I know that one of the cards is supposed to be set to handle internal network and the other one is for dedicated access to internet. This server is currently accessible on the internet and we use remote desktop to log into it by having the ip address forwarded thru our netscreen 5gt router connected to T1 line. Do i have to port forward another route to this same server to allow vpn connection or is that something that i do on the nic card of server itself since it is already accessible on the internet? I'm concerned that if i change settings of the nic card on the server, then users might not be able to access it anymore via remote desktop. My other thought is since we have the netscreen which has vpn capabilities, could we just configure it instead of setting up a vpn server using one of the internal servers? thanks.