Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win


How to create a private VPN using a public VPN server?

Posted on 2014-01-15
Medium Priority
Last Modified: 2014-01-16
Hi all,

Two users, each with their own PC, and a printer in a remote network that cannot be reached in any normal way (the gateway/firewall doesn't allow anything, virtually). Hence our idea: we put a PC in that network, we make it connect to a public VPN server under a known name, we connect ourselves too to the VPN server, and then we can access the printer.

1. Is that possible?
2. Are there such servers available?
3. Free??
Question by:Sjef Bosman
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
LVL 57

Expert Comment

ID: 39784413
I have never heard of a one.

Why can you setup a VPN server where the printer resides?  If there is a business need for this, then it should be justified and allowed.
LVL 46

Author Comment

by:Sjef Bosman
ID: 39784778
That printer and the additional PC are in the same network, behind the impenetrable firewall. The VPN server must be outside that network, in order to create a connection to the outside and allow traffic via that connection inwards. The problem with all networks is that they don't have a fixed IP address, so a provate VPN server becomes a little awkward. It's not impossible, using dyndns, but it would be a lot easier if there were an external public VPN (OpenVPN) server available that could create a VPN for only 4 or 5 PC's, of which one is the PC next to the printer. There is a way to configure an OpenVPN client so that reverse connections are allowed.
LVL 57

Expert Comment

ID: 39786358
-- > ... , behind the impenetrable firewall.

If the firewall is that locked down are you sure you would be able to establish a outbound VPN connection?

If your firewall is that locked down, and you can not get an exception to allow this inbound are you sure your company's policy would allow you to connect to a VPN server?
Understanding Web Applications

Without even knowing it, most of us are using web applications on a daily basis. Gmail and Yahoo email, Twitter, Facebook, and eBay are used by most of us daily—and they are web applications. We often confuse these web applications tools for websites.  So, what is the difference?

LVL 46

Author Comment

by:Sjef Bosman
ID: 39787025
Well, the policy is not so important (yet). First, I want to make sure it's technically feasible, which I think it is. I admit I've never tried to open a VPN port from the inside of the network through the firewall, but I assume it will work, give the fact that other network protocols go through without any problem.
NetworkThis is the general idea: A and B want to print on the remote printer. Normally it isn't accessible, but if a local PC sets up a VPN connection with a VPN server, and A and B can connect to the same VPN, the printer should become available. The remote PC might have to share the network printer, that I'm not sure of yet.
LVL 57

Accepted Solution

giltjr earned 2000 total points
ID: 39787160
No, the policy is the FIRST thing you need to check.  Not sure about your work place but at mine even attempting something like this is grounds for termination.

Why?  Because the box you show as 'public vpn service' now has a connection to each network BEHIND your firewall.  Which means it has FULL access to everything behind your "impenetrable firewall".

This is why there is no such thing as a public VPN server.

It is possible that even with a direct VPN connection between "remote" and the other PC's could be against your company's policy if either of those sites are considered untrusted.  Why?  Again if you setup a VPN between "remote" and A they both have access to each other's networks behind their respective firewalls.  Same thing with "remote" and B.  In fact it is possible that since A and B both have connections to "remote" that they would have full access to each other networks.

If there is a business justification to share the printer at remote with A and B, then your technical team will come up with a supported and allowed configuration.  

If there is not a business justification and you could violate your company's policy and who knows what could happen.
LVL 46

Author Closing Comment

by:Sjef Bosman
ID: 39787259
Ok, got it, no public VPN server. So I'll have to set up my own, which is a thing I don't really intended to hear: it took me a lot of time to get both an OpenVPN sever and a few clients configured correctly. Far too many parameters ;-) But if it's the only way to go...

Thanks for your valuable comments!

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question