Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
2003 VPN
- Thread starter dzon
- Start date
Lordmathos
IS-IT--Management
Hi I use vpn with our server 2003. All I did was open up the user properties in Active Directory. and enable the dial in.
Find out the telephone number that the modem is plugged into and set up a dial up on the workstation
Find out the telephone number that the modem is plugged into and set up a dial up on the workstation
Well setting up VPN from SBS2003 is just standard SBS2003.
Just go to the Server management and run the remote connection wizard.
you can configure vpn there. In this wizard you'll come to a step where you need to enter your server name. Here you need to enter a public dns name that points to your server.
So worst case:
You have a dynamic IP adres and are behind a router.
Register at dyndns for example and get yourself a domain from them. lets say test.homeip.net And point this one to your external IP (you got great tools for that to).
in your router you need to open up some ports and point them all to your internal server IP.:
I open up these ports:
80 http
443 http over ssl (https)
444 Share point
1723 VPN
4125 Remote desktop via SBS2003 (RWW)
then at home you open up IE and enter test.homeip.net/remote
log in with a username and pass (administrator will do for now but better use mobile user)
go to install remote connection and install it. It will place a connection on your desktop to your sbs. Just run it and you can connect through vpn.
If you have a static IP just create a subdomain and point it to your server.
tank you,
best regards,
Lord_Garfield
Just go to the Server management and run the remote connection wizard.
you can configure vpn there. In this wizard you'll come to a step where you need to enter your server name. Here you need to enter a public dns name that points to your server.
So worst case:
You have a dynamic IP adres and are behind a router.
Register at dyndns for example and get yourself a domain from them. lets say test.homeip.net And point this one to your external IP (you got great tools for that to).
in your router you need to open up some ports and point them all to your internal server IP.:
I open up these ports:
80 http
443 http over ssl (https)
444 Share point
1723 VPN
4125 Remote desktop via SBS2003 (RWW)
then at home you open up IE and enter test.homeip.net/remote
log in with a username and pass (administrator will do for now but better use mobile user)
go to install remote connection and install it. It will place a connection on your desktop to your sbs. Just run it and you can connect through vpn.
If you have a static IP just create a subdomain and point it to your server.
tank you,
best regards,
Lord_Garfield
- Thread starter
- #4
Wow, thanks! is that it!
I was talking to some guy that fixes our computers occassionally and he made it out to be a complete nightmare, saying we need a new router a second network card and so on. We already have a public IP going to our router. So I will route those ports to the server and follow your instructions and hopefully it will work!
Again, thanks a lot!
Dzon
I was talking to some guy that fixes our computers occassionally and he made it out to be a complete nightmare, saying we need a new router a second network card and so on. We already have a public IP going to our router. So I will route those ports to the server and follow your instructions and hopefully it will work!
Again, thanks a lot!
Dzon
- Thread starter
- #5
casadeseus
IS-IT--Management
dzon:
In the RRAS setup wizard, select the last option (custom configuration) select (VPN access) you should get a Routing and remote access has been anable pop up, asking to start services press (yes) This would bring the services up.
and you will see the services (up).
At this stage you then will need to allow users in your AD to allow Dial-in (default is deny)
all of the above are correct also.
good luck
JC
In the RRAS setup wizard, select the last option (custom configuration) select (VPN access) you should get a Routing and remote access has been anable pop up, asking to start services press (yes) This would bring the services up.
and you will see the services (up).
At this stage you then will need to allow users in your AD to allow Dial-in (default is deny)
all of the above are correct also.
good luck
JC
Hi dzon:
You realy do not need a second nic. If you do not use ISA server but a router with firewall build in.
Just say in your internet connection wizzard that you only use 1 nic.
You can use 2 nic's so that your SBS will be some kind of router to. And with ISA on it you have a firewall to.
But:
You need to put your second nic in a difrent IP range or else you will have routing problems. And your second nic is where your internet will be connected to. So If you server goes down your internet goes down.
hope you figure it out.
tank you,
best regards,
Lord_Garfield
You realy do not need a second nic. If you do not use ISA server but a router with firewall build in.
Just say in your internet connection wizzard that you only use 1 nic.
You can use 2 nic's so that your SBS will be some kind of router to. And with ISA on it you have a firewall to.
But:
You need to put your second nic in a difrent IP range or else you will have routing problems. And your second nic is where your internet will be connected to. So If you server goes down your internet goes down.
hope you figure it out.
tank you,
best regards,
Lord_Garfield
- Status
Similar threads
- Locked
- Question
