windows mobile L2TP/IPSEC to win2k3

Looking at the subject and the deployment scenario below, could anyone tell
me whether this is possible?

This is the proposed lab deployment:
A PDA running windows mobile will be connected through a wireless Access
Point to the routing and remote access server (win2k3). This will be
considered as subnet 1.

The routing and remote access server will in turn be connected to the active
directory server (win2k3). This will be considered as subnet 2.

Basically, the PDA needs to talk IPSEC with the routing and remote access
server using the L2TP/IPSEC VPN connection manager available and then
subsquently continue to communicate with subnet 2.

I'm not sure whether it is feasible yet. There's not sufficient information
about any such deployment anywhere.

The last part should be fine. If the PDA can set up a VPN link the the
RRAS server, access to other machines on the LAN is OK. Making a VPN
connection over the wireless network should also be OK.

The bit I don't know about is whether the VPN client in Windows Mobile
will support IPSEC/L2TP.

chris82 wrote:
> Looking at the subject and the deployment scenario below, could
> anyone tell me whether this is possible?
>
> This is the proposed lab deployment:
> A PDA running windows mobile will be connected through a wireless
> Access Point to the routing and remote access server (win2k3). This
> will be considered as subnet 1.
>
> The routing and remote access server will in turn be connected to the
> active directory server (win2k3). This will be considered as subnet 2.
>
> Basically, the PDA needs to talk IPSEC with the routing and remote
> access server using the L2TP/IPSEC VPN connection manager available
> and then subsquently continue to communicate with subnet 2.
>
> I'm not sure whether it is feasible yet. There's not sufficient
> information about any such deployment anywhere.

The client in the PDA supports only LT2P over IPSEC and PPTP. Its not a 3rd
party program. Its available in the Windows Mobile 2003 2nd Ed.

Actually, I'm not sure how I should set up the deployment. I think I need to
have Windows Server 2003 with AD, DNS, DHCP and RRAS configured. I think I
also need to enable the IPSEC settings.

I have a wireless access point (no routing configurable) which my PDA
connects to. The PDA has no static address configured. After the connection
to the access point, I can't seem to use the VPN provided by Windows Mobile.
I keep selecting connect but nothing happens. I've set up the neccessary
account details on the server as well as the VPN settings.

"Bill Grant" wrote:

> The last part should be fine. If the PDA can set up a VPN link the the
> RRAS server, access to other machines on the LAN is OK. Making a VPN
> connection over the wireless network should also be OK.
>
> The bit I don't know about is whether the VPN client in Windows Mobile
> will support IPSEC/L2TP.
>

Setting up L2TP/IPSec isn't easy. I would split things up and
concentrate on getting that right before trying from a remote client. You
should be able to test your server config from a workstation directly
connected to the server. When that works, you can start fiddling with the
PDA via an access point.

chris82 wrote:
> The client in the PDA supports only LT2P over IPSEC and PPTP. Its not
> a 3rd party program. Its available in the Windows Mobile 2003 2nd Ed.
>
> Actually, I'm not sure how I should set up the deployment. I think I
> need to have Windows Server 2003 with AD, DNS, DHCP and RRAS
> configured. I think I also need to enable the IPSEC settings.
>
> I have a wireless access point (no routing configurable) which my PDA
> connects to. The PDA has no static address configured. After the
> connection to the access point, I can't seem to use the VPN provided
> by Windows Mobile. I keep selecting connect but nothing happens. I've
> set up the neccessary account details on the server as well as the
> VPN settings.
>
> "Bill Grant" wrote:
>
>> The last part should be fine. If the PDA can set up a VPN link
>> the the RRAS server, access to other machines on the LAN is OK.
>> Making a VPN connection over the wireless network should also be OK.
>>
>> The bit I don't know about is whether the VPN client in Windows
>> Mobile will support IPSEC/L2TP.