1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

VPN + static IPs + wireless

Discussion in 'Networking Issues' started by sblaes, Jul 30, 2005.

  1. sblaes

    sblaes Network Guru Member

    Recently posted with no response, so I'll try backup up and perhaps write a better post...

    I want the following:
    * 2 staging servers (1 windows + 1 linux) accessible via the internet
    * I have a partner that would like unfettered access to these servers
    * 802.11g wireless in my home
    * All servers full accessible from wireless, currently I can't see the active directory for the windows server.

    I have:
    * 1 windows + 1 linux box
    * wrv54g
    * wap54g
    * Linksys 802.11G bridge
    * @Home Homeportal 1000SW from SBC
    * Netopia Cayman router from SBC (drops DSL connection often though)
    * SBC DSL package with 5 static IPs on a subnet using PPPoE

    What's the best way to accomplish this? I'm open to anything. I'm just looking for any advice you guys can give.
  2. DocLarge

    DocLarge Super Moderator Staff Member Member

    For the sake of simplicity, conntect your WRV to your cable modem.

    Open up the wrv web admin page and go to "access and restrictions." Click on "vpn" and add a username and password. This is the easy part. The "not so hard but easy to jack up" part is configuring the client for windows access. It's always best to use a hardware solution for vpn if I must say so...

    Next, if you are already running active directory on one of your windows servers, click on start, then programs, then Administrative Tools, then, Active Directory Users and Computers. Expand the directory, and the icon representing your domain. Now, "right" click on groups and create a vpn group (testvpn, for example). "Right" click on users and add a user account. Once you've done that, "right" click on that users profile and hit "properties"; you should now be looking at that users property page.

    On the top row, you should see "Member Of." Click on this tab and then click "add"; you want to add this user to the "testvpn" group. Once you've done that, then click on "dial-in". On this tab, click "allow access" so the user can authenticate once he/she has cleared wrv54g vpn authentication. You can now close the properties tab page.

    Open up windows explorer and create a folder on any partition "except" the "c" drive; this is a secure approach so as not to completely open your system files and directories up for a hacker. Create a directory, "right" click on that directory and click "sharing"; you should see another properties page. Give the share a simple name (for now call it "testvpn") and then give the "testvpn" group access (you decide how much access) along with "administrator." Next, click on "security"; make sure you clear out inheritable information. To do this, "uncheck" the little box (inheritable permissions) on the lower left hand side; everything should be empty. Now add administrator "and" your testvpn group with the appropriate access permissions.

    Okay, let's go over how you would access your windows box "after" you have authenticated remote access through your WRV.


    Once you’ve made the connection and you want to connect to a shared resource that you have rights to from a remote location, on the "client" computer, open up windows explorer and click on "tools," then “map a network drive.†After clicking on that, choose a driver letter and type the ip address of a computer you have rights to on that network. You would type the following (example): \\\sharename

    Where you see sharename would be where you would substitute the name of a folder you have share permissions to access (i.e., \\\testvpn).

    Before you click finish, click on “connect as different user†because in order to connect, that local machine needs to have a "username and password" created on it so it recognizes who you are. If you are part of a domain, make sure that your "domain user account" has been added to each computer you want to access remotely.

    When you click this link, you’ll be asked to type in a username and password that has access rights. Click O.K., then click finish. The shared resource you have been given access to should pop up! If the account you’re connecting to has the permissions set properly, you’re all good now!

    As long as your quickvpn client is configured properly (email me if you want step-by-step quickvpn setup instructions) you shouldn't have too many problems. Let me know if you do.


Share This Page