need certificate sserver for L2TP / IPSec vpns

Olivier Bekoin bekoin at GLOBEACCSS.NET
Wed Aug 16 06:40:26 EDT 2000


Hi, I'm tring to configure computer certificate server for host
authentification on W2K advanced server.

Does everybody know how to do it on W2K or if it is possible to use another
software program that do the same thing

thanks

Olivier
Technical Support - Globe Access Internet

----- Original Message -----
From: "Rohan Naggi" <rohan.naggi at TAVANT.COM>
To: <VPN at SECURITYFOCUS.COM>
Sent: Monday, August 07, 2000 10:08 PM
Subject: Is PPTP supported by overloading NAT


> PROBLEM  :
>
> PPTP client behind the PIX firewall cannot connect to the Server thru PPTP
> gateway
>
> SETUP :
>
> There are two sites SITE A ( USA  ) and SITE B  ( INDIA ) .
>
> SITE A has CISCO PIX  firewall ( PIX -A ) acting  as a PPTP gateway . It
> also has WINDOWS 2000 Server's
>
> SITE B has LINUX Server which is doing NAT  . PPTP client is a Windows
2000
> Prof edition  .there are total of 10 PPTP clients which needs access to
the
> Servers at Site A . For the Internet access at SITE B , Linux box does the
> address translation ( overloading NAT ) . So , all the 10 m/c goes out
with
> one Global IP address .
>
> Purpose of the above setup :
>
>  SITE B Clients should be able access Servers at SITE A
>
>
> Explanation :
>
>
> PPTP client which is behind the PIX firewall is not able to establish a
PPTP
> session to PIX A .
>
> LINUX box  @ SITE B   is doing Overloading of NAT ( converting many
Private
> addressed to Single global address ) .
>
> When a static global address is used at SITE B ( I mean to say the Windows
> 2000 client uses DIAL UP networking ) , the PPTP clients are able to
> successfully connect to the Servers at SITE A .
>
> But when the SITE B client use Overloading of NAT( i.e trying to go thru
> LINUX ) , the PPTP session fails .
>
>
> Can u help me out ......
>
>
> Thanks and Regards ,
> Rohan
>
> Rohan.naggi at tavant.com
>
> VPN is sponsored by SecurityFocus.COM
>

VPN is sponsored by SecurityFocus.COM




More information about the VPN mailing list