VPN Access to a DSL server

  • Thread starter Thread starter Raul Rego
  • Start date Start date
R

Raul Rego

I have a W2k domain behind a linksys router connected to a DSL modem.

If I want to do a VPN access from remote , do I have to open any ports on
the linksys router or make the computer IP a member of the DMZ?

Thanks,

Raul Rego
 
Hi Raul,

I'm by no means an expert in this subject matter of VPN nor Remote Desktop,
but I'll try to assist you to the best of my ability.

In reading this article, if I'm not mistaken it would be port 3389.

832017 Port Requirements for the Microsoft Windows Server System
http://support.microsoft.com/?id=832017

--
Hope this helps,
Mike Rosado
Windows 2000 MCSE + MCDBA
Microsoft Enterprise Platform Support
Windows NT/2000/2003 Cluster Technologies

====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.
<http://www.microsoft.com/info/cpyright.htm>

-----Original Message-----
 
If you have VPN connections using PPTP, you will need to allow TCP port 1723
and Protocol 47 (GRE) to pass through your firewall. If you are using
L2TP/IPSec, you will need UDP port 500 and Protocol 50 (ESP) to pass
through the firewall. If you are using AH/ESP in your IPSec policies, you
will also need Protocol 51 (AH) to pass.

SOHO router might have the settings for IPSec pass-through and PPTP
pass-through. Read the router manual.
 
Raul,

Please humor me and enable port 3389 and test it. Because all article lead
to the same thing.

304304 How to configure the Remote Desktop client to connect to a specific
port
http://support.microsoft.com/?id=304304

307711 Remote Assistance Invitation File Does Not Contain Correct Port
Number
http://support.microsoft.com/?id=307711

306759 How to change the listening port for Remote Desktop
http://support.microsoft.com/?id=306759

875357 Troubleshooting Windows Firewall settings in Windows XP Service Pack
2
http://support.microsoft.com/?id=875357

--
Hope this helps,
Mike Rosado
Windows 2000 MCSE + MCDBA
Microsoft Enterprise Platform Support
Windows NT/2000/2003 Cluster Technologies

====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.
<http://www.microsoft.com/info/cpyright.htm>

-----Original Message-----
 
In theory you could move the server to the DMZ but I would not reccomend it
unless you have a server that you can build to do nothing other than vpn
access. If you open the ports listed below you should be ok, most linksys
routers have ipsec and pptp passthrough raid buttons. Actually the best
thing to do would be a server just for vpn endpoint and move it to the DMZ
that way you would not have to worry about NAT traversal.
http://www.microsoft.com/technet/community/columns/cableguy/cg0802.mspx
 
Back
Top