Please help...Beginner VPN Setup Questions

Discussion in 'Windows Networking' started by Chris C., Jul 30, 2004.

  1. Chris C.

    Chris C. Guest

    Hello,

    I'm a complete beginner when it comes to networking, and I was just
    trying to figure out how to do the following:

    My DSL provider provides us with 4 static IP addresses and we would
    like to share this connection between two separate networks. This
    would mean that I would connect my DSL modem to my router and then
    connect two routers (call them router A and router B) for networks A
    and B respectively (as I would like to keep the two networks separate
    and not have any computers on network A see any computers on network
    B).

    I was thinking about setting up a VPN so that I will be able to grab
    files off our Windows 2003 Server while I'm at home.

    Can you guys please tell me what is the most simple, painless way to
    get this going?

    I have four static IP addresses, but I'm not sure how I can assign one
    of those IP addresses to go to our Windows 2003 Server (which has a
    private IP of 192.168.1.10), so that a public IP address will direct
    me to my Windows 2003 Server.

    Does having a subnet (routers connected to routers, as described
    above) make any difference as to how I set up the VPN? Is it more
    difficult? If so, can you please tell me how I can set it up?

    I'm really not sure what having four static IP addresses will make as
    opposed to having just one. Can you guys please explain?

    Sorry for all the questions, as I'm still a beginner at this :(

    Thanks it advance! I really appreciate it!
     
    Chris C., Jul 30, 2004
    #1
    1. Advertisements

  2. Depends on the router. If these are Cable/DSL Routers, then these aren't
    *real* routers, they are simply "Internet NAT Applicances". It is
    unfortunate that the "SOHO" industry has butchered the dictionary in how
    thay named these things and thereby causing a lot of confusion for people
    who don't have the background to know the difference.

    I'll try to keep it simple,...so let's forget about VPN right now and just
    deal with the two networks. VPN will not be painless or simple, especially
    if you aren't already familiar with "normal" networking yet.

    1. Use just *one* DSL/Cable Router and place it between the Modem and the
    1st "network". Disable the DHCP features of it and don't use them. You will
    statically assign all addresses on the "1st network" for now with an address
    set that is "expected" by the Cable/DSL router. You will also statically
    assign the addresses on the "2nd network" as well but it must be a different
    address set in a different subnet.

    2. Get a *real* LAN Router, I don't care what brand but it must have at
    least two Ethernet Interfaces. You could also build one using a Windows
    Server machine with two NICs or the cheapest might be some old hardware
    running Linux with two nics.

    3. Put the LAN Router between the 1st and 2nd network.

    4. Each network uses the LAN Router as the Default Gateway according to the
    respective interface that faces that particular network. The LAN Router in
    turn uses the Cable/DSL "Router" as it's Default Gateway.

    5. The Cable/DSL router must have a way to add a "static route" to the "2nd
    network" via the LAN Router as the gateway.

    6. The clients will all either use the ISP's DNS directly, or they will use
    the LAN Interface of the Cable/DSL router as the DNS Server and it will then
    relay on to the ISP's DNS. Your exact situation may vary.

    It will look like this:

    Net#2--[LAN Router]--Net#1--[Cable/DSL Device]--[Modem]--Internet
     
    Phillip Windell, Jul 30, 2004
    #2
    1. Advertisements

  3. you should forward the public ip ports (TCP 1723 and IP GRE 47) to a private
    ip on the router. Then setup VPN on 2003 is easy. For more and other
    information, go to http://www.ChicagoTech.net

    Don't send e-mail or reply to me except you need consulting services.
    Posting on MS newsgroup will benefit all readers and you may get more help.

    Robert Lin, MS-MVP, MCSE & CNE
    Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
    http://www.ChicagoTech.net
    This posting is provided "AS IS" with no warranties.
     
    Robert L [MS-MVP], Jul 30, 2004
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.