Setting up RRAS through a firewall

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I recently purchased a D-Link Firewall router (DFL-200) to be used as an
Internet router and firewall for a very small network (15 computers). My LAN
uses a private IP range (192.168...) and the server (Windows 2000 server) is
equipped with 2 NICs, one for the private LAN and one for the public net
(WAN). I have configured the following services on my server which will
require configuring the Firewall: RRAS (remote VPN access for employees) and
an Intranet Website (IIS). The firewall is already conected to my LAN with
the public IP settings and is routing internet traffic with out any problems.
What IP should I put on my WAN NIC on the server since the firewall already
has the public IP configured on it? And were do I connect the WAN NIC: to
the LAN Switch or directly to the firewall. I have tried several settings
but can get RRAS to work through the firewall. Before we purchased the
firewall, RRAS was already installed and running. In that case we had the
second NIC configured with a public IP and connected directly to the
internet. No problems there except for security, but how do I accomplish
this through the firewall.

It’s my first time with firewalls so all tips are welcomed.

Mr. Kidd
 
If you already have firewall, you don't need to setup the NAT on the windows server except you want to have more security. one way or other, the server NIC IP should be private IP, for example, one is 172.16.1.1 and another is 192.168.1.1.

Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
This posting is provided "AS IS" with no warranties.

I recently purchased a D-Link Firewall router (DFL-200) to be used as an
Internet router and firewall for a very small network (15 computers). My LAN
uses a private IP range (192.168...) and the server (Windows 2000 server) is
equipped with 2 NICs, one for the private LAN and one for the public net
(WAN). I have configured the following services on my server which will
require configuring the Firewall: RRAS (remote VPN access for employees) and
an Intranet Website (IIS). The firewall is already conected to my LAN with
the public IP settings and is routing internet traffic with out any problems.
What IP should I put on my WAN NIC on the server since the firewall already
has the public IP configured on it? And were do I connect the WAN NIC: to
the LAN Switch or directly to the firewall. I have tried several settings
but can get RRAS to work through the firewall. Before we purchased the
firewall, RRAS was already installed and running. In that case we had the
second NIC configured with a public IP and connected directly to the
internet. No problems there except for security, but how do I accomplish
this through the firewall.

It’s my first time with firewalls so all tips are welcomed.

Mr. Kidd
 
There really isn't any reason for the server to have two NICs in this
situation. The firewall is doing everything that is required to link the
private LAN to the public network. I would set up the server with a private
NIC only and use port forwarding to get VPN and IIS traffic to the server
from the firewall. External machines connect to the firewall's public
interface.
 
Back
Top