| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 106658 | 2010-01-18 00:37:00 | SBS2003 VPN | SolMiester (139) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 849547 | 2010-01-20 02:12:00 | How'd you get on? Well, the cisco CLI is a wee bit scary...LOL, so I am thinking about just getting another router thats GUI configurable and trying again....They arent a bit business and I just dropped $700 on a replacement SAS drive.....what would you suggest as a router option that will have to act as a firewall.....I am contemplating putting a OpenVPN box between the router and the DC and forgetting about the 2003 VPN...thoughts?...would that be overkill or too paranoid for 4-5 users to login occassionally? |
SolMiester (139) | ||
| 849548 | 2010-01-20 02:30:00 | I've had really good experience recently with the DrayTek Vigor 2820 series, though they're not at the cheapest end of the router pile, and aren't really the most intuitive interface (though it's certainly not bad). A NetGear DG834G should work too - though I'm quite surprised the 502T isn't doing PPTP passthrough. In terms of your idea of an OpenVPN box, it's not a bad idea, but a few points. If it's between the router & DC, then any VPN clients connecting to it will be treated as WAN connections by the SBS box, so you'll have to take this in to account from a security point of view - a LOT of ports open on the WAN connection to allow shares, AD authentication etc. Also, it won't authenticate VPN users with AD automatically, so you'll have to ensure they are authenticating in order to get permissions to whatever they need to access. You'd need to ensure that the OpenVPN box and router are handling all your network security, as the SBS box will be pretty wide open. Not necessarily bad, provided it's done right. The simplest thing, really, is just to get PPTP passthrough setup on a DSL router, and use the SBS box as your VPN endpoint. Are there any events generated in the event log on the server when you try to connect to the VPN? Can you telnet in to port 1723 on your public IP? |
inphinity (7274) | ||
| 849549 | 2010-01-20 02:58:00 | snip The simplest thing, really, is just to get PPTP passthrough setup on a DSL router, and use the SBS box as your VPN endpoint. Are there any events generated in the event log on the server when you try to connect to the VPN? Can you telnet in to port 1723 on your public IP? absolutely this is the best way to go, fix the VPN / RRAS that is built into the product you are already using PPTP is TCP 1723 and you also need to forward GRE protocol type 47 Cheers Nathan |
nmercer (3899) | ||
| 849550 | 2010-01-20 03:28:00 | Okay, I dont think the 502T in forwarding properly...Will look for another router and continue with the SBS 2003 VPN idea.... | SolMiester (139) | ||
| 849551 | 2010-01-20 03:30:00 | Screenies from my 604T with PPTP passthrough to a LANside VPN server | fred_fish (15241) | ||
| 849552 | 2010-01-20 19:30:00 | Screenies from my 604T with PPTP passthrough to a LANside VPN server Hi Fred, that exactly as the 502T is configured...however, getting no further than connecting to mini WAN...? |
SolMiester (139) | ||
| 849553 | 2010-01-20 19:44:00 | Wait....!, got it going...had to reset the router and start again, must of got corrupted!! | SolMiester (139) | ||
| 1 2 | |||||