Hi folks, I was hoping for some VPN advice for a new comer. I wish to connect remote users to me business network. I have a windows 2000 server in place running active directory. I have put a second network card in the server and have given that a public IP address given by my ISP,the first network card has the IP address of the LAN. I have set up RRAS and all seems ok with that and have gone for Windows authentication. I have given the LAN network card a default gate way so it can access the net. When I configure the clients I am unable to log onto the network. My question is I have a DSL router,do I need to enable port forwarding? If so what ports do I forward? Also do I have to get involved with IAS? does that need configuring. Hopefully someone can help me as its driving me mad. Many Thanks.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations biv343 on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
VPN Advice
- Thread starter btbailey
- Start date
John Lewis
Programmer
If the second NIC has a public IP, your DSL router may need to be configured to route to it, but you should not need to forward ports.
Beyond that, hard to tell what might be going on without more info. What happens on the client side when you try to connect? Error messages? Include the name and text of the message.
Beyond that, hard to tell what might be going on without more info. What happens on the client side when you try to connect? Error messages? Include the name and text of the message.
- Thread starter
- #3
Thanks Mhkwood
The error I get on the client side is error 800. Unable to establish the VPN connection. The vpn server may be unreachable, or security parameters may not be configured properly for this connection. In all fairness I get differnt error messages as I fiddle with the server settings. Just to confirm, I have RRAS configured on a windows 2000 active directory server. It has 2 network cards one with LAN IP address and one with the DSL public IP address. I have allowed incoming VPN connection on active directory for a user and have set up the client XP and Win2k machines to connect to the public IP address. The only thing is I'm on the LAN and using the DSL router to get out to the net and back onto the win2k server.
Thanks all
The error I get on the client side is error 800. Unable to establish the VPN connection. The vpn server may be unreachable, or security parameters may not be configured properly for this connection. In all fairness I get differnt error messages as I fiddle with the server settings. Just to confirm, I have RRAS configured on a windows 2000 active directory server. It has 2 network cards one with LAN IP address and one with the DSL public IP address. I have allowed incoming VPN connection on active directory for a user and have set up the client XP and Win2k machines to connect to the public IP address. The only thing is I'm on the LAN and using the DSL router to get out to the net and back onto the win2k server.
Thanks all
John Lewis
Programmer
800 can pop up just about anywhere, so that doesn't really help. The fact that the error changes as you fiddle indicates that at least part of the connection is getting to the server. TCP on 1723 is getting through, GRE might not be. Make sure that the router is able/configured to pass GRE (also called protocol 47 or more commonly pptp passthrough). If you need help with that, post the brand and model of the router.
Past that, I would enable logging on the server for a while.
Be sure to turn it off when you are done, can use lots of disk space.
Past that, I would enable logging on the server for a while.
Be sure to turn it off when you are done, can use lots of disk space.
- Status
Similar threads
- Locked
- Question