The answer is yes to both questions. If you have an existing router, you
can use this as your Internet access point, rather than a public NIC in the
server.
You configure the server for remote access. When you can successfully
make a VPN connection locally (ie from a LAN client machine), forward ptpp
(tcp port 1723) from your firewall to the LAN IP of the RRAS server. You
should then be able to make a VPN connection from an external machine
connecting to the firewall's public interface.
The connection will fail if the firewall (or anything else, including a
personal firewall on the client) blocks GRE. GRE (IP protocol 47) is used to
encapsulate the tunnelled data, so blocking GRE blocks the VPN data.
"Keith" <(E-Mail Removed)> wrote in message
news:2fcc01c470f0$ad9c4c60$(E-Mail Removed)...
> Can this be done? In addition, is it possible to have
> this vpn server behind a firewall that runs NAT?
|
Linear Mode
