Tuesday, November 14, 2006

Minimal Setup of W2K3 VPN with NAT

0) Disable Windows Firewall service
1) Add Remote Access Role with VPN & NAT.
2) Assign private IPs to clients eg 192.168.x.x
3) Include basic firewall.
4) Punch hole in firewall for PPTP port (1723), assign to external IP/NIC in basic firewall
5) Add remote access policy to include windows/AD group for access to VPN
6) Enable name resolution on basic firewall
7) On the VPN server IP properties tab, use the external NIC for DNS queries

No comments:

 
Jeffrey Ting Jeffrey Ting on Facebook Jeffrey Ting on Spock Jeffrey Ting on Plaxo Jeffrey Ting on Spoke Jeffrey Ting on LinkedIn