G
Guest
Hi. Do I need two NICs on my server, in order for it to be a VPN server? If not, is there a quick reference on how to set it up without the secondary nic? Thanks
Alex
Alex
L
Lanwench [MVP - Exchange]
Yes, you would, to do RRAS. However, I'd advise you instead to pick up a
hardware firewall/router appliance that supports VPN as well.....I think
it's a better option from a security and performance standpoint. I like
Sonicwall firewalls and their proprietary IPSec client....they work like a
champ.
If you do decide to use VPN on your own server, make sure it's not your
domain controller/file print/Exchange/whatnot server....use a separate
server.
hardware firewall/router appliance that supports VPN as well.....I think
it's a better option from a security and performance standpoint. I like
Sonicwall firewalls and their proprietary IPSec client....they work like a
champ.
If you do decide to use VPN on your own server, make sure it's not your
domain controller/file print/Exchange/whatnot server....use a separate
server.
R
Redmondite
One caveat - I looked at Sonic Wall a couple of years ago and the cost of
the VPN client licenses made an inexpesive Firewall/VPN unit a lot more
expensive than the Cisco PIX (which I consider a better firewall). That
setup with an NT 4 server running as the Radius server worked just fine.
Also, doing VPN you can get blindsided by someone who wants to use their own
PC (say to work from home) and it has a different OS than the office units.
So make sure you can get compatible VPN client software for all your
possible platforms. I know there's a standard but we all know what
"standard" means - what you get when you put two four letter words
together - and not the words you'd like to use.
Good luck.
"Lanwench [MVP - Exchange]"
the VPN client licenses made an inexpesive Firewall/VPN unit a lot more
expensive than the Cisco PIX (which I consider a better firewall). That
setup with an NT 4 server running as the Radius server worked just fine.
Also, doing VPN you can get blindsided by someone who wants to use their own
PC (say to work from home) and it has a different OS than the office units.
So make sure you can get compatible VPN client software for all your
possible platforms. I know there's a standard but we all know what
"standard" means - what you get when you put two four letter words
together - and not the words you'd like to use.
Good luck.
"Lanwench [MVP - Exchange]"
L
Lanwench [MVP - Exchange]
Good points, and Cisco is good stuff, agreed, but depending on the size of
the office, number of simultaneous connections required, the Sonicwalls can
be cheaper. I use the Pro models - the 230 sounds like it might be a good
fit for the OP if that route was chosen.
Re VPN client software - I haven't had any OS compatibility problems with
the Sonicwall stuff - and all my clients have "minimum spec" requirements
for remote access users, or allow them to use VPN only with corporate-issued
laptops. The latter also makes for more security. YMMV.
the office, number of simultaneous connections required, the Sonicwalls can
be cheaper. I use the Pro models - the 230 sounds like it might be a good
fit for the OP if that route was chosen.
Re VPN client software - I haven't had any OS compatibility problems with
the Sonicwall stuff - and all my clients have "minimum spec" requirements
for remote access users, or allow them to use VPN only with corporate-issued
laptops. The latter also makes for more security. YMMV.
G
Guest
Thanks for the feedback. What Cisco model would you recommend for a very small office of 5-10 users
Alex
Alex
G
Guest
Thank you for the feedback. However, that's still $1500.... anything cheaper??
Alex
Alex
R
Redmondite
I haven't researched it but some of the "home" firewall / router boxes
support VPN and they're in the hundreds of dollar range. Of course you have
to consider quality of the firewall you're getting and whether it can be
reconfigured for your needs.
eBay's a good place to look for used equipment if you've researched and know
what you're getting.
support VPN and they're in the hundreds of dollar range. Of course you have
to consider quality of the firewall you're getting and whether it can be
reconfigured for your needs.
eBay's a good place to look for used equipment if you've researched and know
what you're getting.