Im going to sound very dumb but I wanted some simple guidance on setting up a VPN that hopefully someone can help me with.
We have 12 external IP addresses available through our Cisco external router.
We have an internal network - Server 2012 / 2008 on a private subnet
What is the simplest solution going to give our users external access to our internal network via a VPN or remote connection?
Staff mainly, access onto the network mainly for SIMS and Network documents.
If you're wanting a full VPN, I've found OpenVPN to be quite easy to configure (although I've always run the server on a Linux box, so am not sure how well it would work if you need to out it on a Windows box). OpenVPN uses SSL to secure the connection, and if you run it over UDP with the ta.key setup, it won't give any handshake unless users have the key file, making it pretty much undetectable.
Alternatively, if your Cisco router is an ASA or similar, that should support IPSec, so you could have that act as your VPN endpoint. If that's the case I'd advocate using certificate based authentication, ideally with AD integration so certificates can be managed from the existing domain, and you could then have users authenticate with the certificate and their domain credentials.
Last edited by mrcrazy04; 18th December 2013 at 08:20 AM.
Consider very carefully the implications of using a VPN to give direct access to the network from devices that you have no control over ( especialy in terms of AntiVirus ).
Remote Desktop solutions are favourable.
There are currently 1 users browsing this thread. (0 members and 1 guests)