Problem with VPN client behind NAT on Win2k Server

[Fred Law]

I have setup my Win2k Advanced server with 2 NICS. Nic A
is connected directly to internet with public IP and Nic B
is connected to my private network with private IP. I
setup my Win2k server as VPN server. So, our staffs can
connected back to their workstation at home.

Right now, I setup NAT on the same server to allow the
staffs to connect VPN server in the public via the same
server.

I have no problem to connect to the our VPN server at
home. However, I have problem to initialize VPN client via
NAT. I can connect to internet and see the public IP via
NAT. When I initialize the VPN client with Dial-up
Networking. I had an error number 721. Can someone help me
to resolve this?

Thanks,

Fred

20 July, 2003

 

[Bill Grant]

Do you mean you are trying to connect to the server's public IP from
within the LAN? This will not work. You cannot go out to the public IP and
back into the LAN from a LAN client. You can make a VPN connection to the
server's private NIC from a LAN client.

 

[Fred Law]

Hello Bill,

This what I want to do: I want to connect to our client's
public IP (VPN server) from within our private LAN via NAT
running on Win2k server.

Fred

20 July, 2003

 

[Bill Grant]

No, that won't work. When the packet reaches the server, it has arrived
at its destination. A server will not send packets between its interfaces.