I have reviewed the archives and know that this has been requested many
times, but I still can't
quite see the "right" answer.
I have a private (W2K) network with an LRP firewall to the Internet (via
cable modem). My Internet
address is via DHCP, but hasn't changed in months, so we will call it fixed.
I use LRP for firewall,
masqing and DHCP server (for the private network). LRP also runs SSH (for
administration from the
private network only). All is great.
Now I'm greedy. I want to take a laptop to Timbuktu and dial in to the
Internet. Now I want access to
my private network. I'm cheap, so I would like to use anything that is
already part of W2K (e.g. IPSec),
but I'm also security conscious, so I'm leery of PPTP.
Here are the questions:
1) I know that W2K supports IPSec encryption and authentication, but does it
actually support IPSec
tunneling. All the W2K docs seem to refer to L2TP over IPSec, not IPSec
tunneling. There is a
suggestion that W2K does support IPSec tunneling, but I'm really not sure.
Does it?
2) Based on the answer to #1, if W2K does support IPSec tunneling, am I home
free by putting IPSec
on LRP? How do I set up W2K for this (it seems I WOULN'T use VPN
connection, I would use dialup
with IPSec policy???).
3) If W2K doesn't support IPSec tunneling, what mess must I set up? L2TP
and IPSec on LRP?
IPSec masqing and L2TP and IPSec on my private network "server"?
4) If this is too troublesome, does it simplify things to say that I only
have to reach one computer
(the "server") on the private network?
TIA
Keith Laidlaw
Manager of Engineering
Dakins Engineering Group Ltd.
tel: (905) 814-6024
fax: (905) 814-6029
winmail.dat
