G
Gaylen Michael
Hello,
This should be the simplest of solution but it still eludes me after days of
configuration. I have a W2K3 domain and recently setup a W2K3 server with a
hosting provider where ther is only one NIC which has the public ip assigned
to it.
All I want to do is keep a VPN or IPSec (whatever it takes, even ISA 2004 if
need be) connection between our domain network and that hosted server alive
so that we can manage that server in the hosted environment using the same
GPO's and AD accounts. I have already added the hosted server to the
corpnet domain. It would be great if it would only dial on demand when a
request was made for that netbios or fqdn of the hosted server from the corp
net but I'd be content with an always on connection too if that's what it
takes.
On our corpnet we are using RRAS (for inbound VPN clients) and ISA 2004 on
the same box which has a NIC going to the DMZ and an internal NIC to our
corpnet.
To this point I have tried a standard VPN connectoid from the hosted server
which can establish a connection into our corpnet no problem, but it won't
keep alive once I logout of that machine. Another problem here, when the
VPN is up I can hit resources on the corpnet from the hosted server but not
vice versa - meaning I cannot reach any resources on the hosted server from
the corpnet even over that VPN connectoid.
I then decided to try setting up RRAS on the hosted server as a demand dial
router as well I added a dd interface on my corpnet RRAS / ISA server. I
can get them to connect just fine but there doesn't seem to be any name
resolution or traffic passing over that connection? Would this be because
there's no internal NIC on the hosted server? I added the MS Loopback
Adapter to that server to try and simulate an internal LAN on that server
but that didn't help.
This could all just be a DNS problem too I guess but I'm not sure.
I've heard that ISA has a wizard to help me set this up very easily but I'm
hoping to get it working in RRAS first so that I understand exactly what's
going on. ISA with only one NIC also seems to be a problem if I recall
correctly.
Any guideance is greatly appreciated!
Gaylen
This should be the simplest of solution but it still eludes me after days of
configuration. I have a W2K3 domain and recently setup a W2K3 server with a
hosting provider where ther is only one NIC which has the public ip assigned
to it.
All I want to do is keep a VPN or IPSec (whatever it takes, even ISA 2004 if
need be) connection between our domain network and that hosted server alive
so that we can manage that server in the hosted environment using the same
GPO's and AD accounts. I have already added the hosted server to the
corpnet domain. It would be great if it would only dial on demand when a
request was made for that netbios or fqdn of the hosted server from the corp
net but I'd be content with an always on connection too if that's what it
takes.
On our corpnet we are using RRAS (for inbound VPN clients) and ISA 2004 on
the same box which has a NIC going to the DMZ and an internal NIC to our
corpnet.
To this point I have tried a standard VPN connectoid from the hosted server
which can establish a connection into our corpnet no problem, but it won't
keep alive once I logout of that machine. Another problem here, when the
VPN is up I can hit resources on the corpnet from the hosted server but not
vice versa - meaning I cannot reach any resources on the hosted server from
the corpnet even over that VPN connectoid.
I then decided to try setting up RRAS on the hosted server as a demand dial
router as well I added a dd interface on my corpnet RRAS / ISA server. I
can get them to connect just fine but there doesn't seem to be any name
resolution or traffic passing over that connection? Would this be because
there's no internal NIC on the hosted server? I added the MS Loopback
Adapter to that server to try and simulate an internal LAN on that server
but that didn't help.
This could all just be a DNS problem too I guess but I'm not sure.
I've heard that ISA has a wizard to help me set this up very easily but I'm
hoping to get it working in RRAS first so that I understand exactly what's
going on. ISA with only one NIC also seems to be a problem if I recall
correctly.
Any guideance is greatly appreciated!
Gaylen