Solved

VPN Server (Windows Server 2008 R2)  using  “Network Policy and Access Services”

Posted on 2015-01-15
3
71 Views
Last Modified: 2015-01-29
I'm attempting to set up a VPN server on a virtual machine.

I followed the steps here:
http://www.thomasmaurer.ch/2010/10/how-to-install-vpn-on-windows-server-2008-r2/

Right now this is only with ONE NIC on the VM, where I have a static pool of private IPs.  Basically I followed this guide:
http://www.thomasmaurer.ch/2010/10/how-to-install-vpn-on-windows-server-2008-r2/


I am able to connect to the VPN, and I can ping 10.10.10.1 for example.

The issue is that I cannot connect out to the Internet through the VPN.


I'm assuming I probably need add a 2nd NIC but I'm not sure how to modify the configuration exactly.


The end result is when I'm on the VPN from say, my iPad or laptop... I want my public IP (ie - whatismyip.com) to show up as the IP of the VM.


I do have the capability to add another NIC and even to add another public IP to the VM if needed.


Just need some guidance in the rest of the setup, based on what I did so far (article above).


Thank you
0
Comment
Question by:Vas
  • 2
3 Comments
 
LVL 1

Author Comment

by:Vas
Comment Utility
UPDATE:

I am able to get this working if I add a two public IPs to the NIC, and then set the range of static IPs to the range of the two public IPs.

The 2nd IP is assigned to my iPad when testing.


So I guess my question is... is there anyway to do this with the VM having only one Public IP,  or is it necessary to have multiple public IPs to make this work?
0
 
LVL 2

Accepted Solution

by:
lasfra earned 500 total points
Comment Utility
The normal idea with a VPN server is that you should be able to reach your internal network from internet.
So what do you mean with:

“I am able to connect to the VPN, and I can ping 10.10.10.1 for example
The issue is that I cannot connect out to the Internet through the VPN.”

The VPN server should have 2 NICs, one NIC facing the outside and on NIC facing your internal network. This is true both for VMs and for physical hosts.
If you install a VM as a VPN server the VM should have 2 NICs. If your physical server has a NIC facing internet, each machine using this NIC has to have a unique IP address. So the VM and the physical server can not share the same IP address, but the can share the NIC.
0
 
LVL 1

Author Comment

by:Vas
Comment Utility
I was able to make it work with one NIC,  what I had to do was set the scope of the IPs to assign by the VPN service to additional public IPs.   I can connect to the VPN now and my public IP is shown as the public IP assigned by the VPN server.

What I haven't been able to do is set up an additional VPN user.  For testing right now, the current VPN user is the Administrator account, with granted "dial-up" privileges.

I created a second user, and even added it to the administrators group, gave it the same "dial-up" privilege (so right now there's really nothing different about this 2nd user in how it's configured as the administrator user)

The Administrator user can connect, but the new user can't.  No error, nothing in any logs, it just disconnects right away when trying to connect.
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now