VPN trên Windows 2003 Server

Mục lục
1. Overview
2. Cài đặt VPN Server
3. Cấu hình VPN Server
3.1. Route and Remote Access Properties
3.2. Ports Properties
3.3. Remote Access Policies
4. Tạo User trên Windows cho phép sử dụng VPN
5. VPN Client trên Windows XP
6. Quản lý kết nối VPN trên Server

1. Overview
Virtual Private Network – VPN là công nghệ mạng riêng ảo hỗ trợ việc tổ chức một hệ thống mạng riêng trên nền Internet/Intranet. VPN được ứng dụng với một số tình huống sau:
• Remote Access: Hỗ trợ nhu cầu truy cập dữ liệu và ứng dụng cho người dùng ở ngoài công ty vào hệ thống mạng của công ty thông qua Internet.
• Site To Site: Hỗ trợ việc kế nối 2 mạng của công ty ở 2 nơi khác nhau thông qua Internet.
• Intranet/Internal VPN: Hỗ trợ việc tạo một mạng riêng, an toàn trong một mạng của công ty.
VPN sử dụng các tunnel protocol để truyền các packet. Có 02 tunnel protocol hay được sử dụng, đó là PPTP (Point-to-Point Tunneling Protocol) và L2TP ( Layer 2 Tunneling Protocol).
• PPTP: PPTP có thể sử dụng cho Remote Access hay Site-to-Site VPN.
• L2TP: L2TP là sự kết hợp của PPTP và Layer 2 Forwading (L2F, giao thức được phát triển bởi Cisco System).
Có nhiều chương trình VPN Server trên Windows cũng như Linux. Trên Linux có thể kể đến openVPN, openswan. OpenVPN cũng có phiên bản chạy trên Windows. Tham khảo các link sau:
• Openvpn: http://openvpn.net/
• Openswan: http://www.openswan.org/
• Open VPN GUI for Windows: http://openvpn.se/
Trên Windows 2000 Server, Windows 2003 có tích hợp sẵn VPN Server. Ngoài ra trong bản ISA Server cũng có thể cấu hình VPN Server.
Trong tài liệu này sẽ hướng dẫn về cách cài đặt và cấu hình VPN Server trên Windows 2003.
VPN trên Windows 2003 dưới dạng Remote Access sẽ cho phép các máy tính truy nhập đến mạng nội bộ của công ty thông qua Internet. Có thể xây dựng một mô hình đơn giản như sau:
• Modem ADSL có địa chỉ IP tĩnh. Trong trường hợp không có địa chỉ IP tĩnh, có thể sử dụng DDNS.
• 01 máy tính cài hệ điều hành Windows 2003 Server. Máy tính này sử dụng để cấu hình VPN Server. Máy tính này nên sử dụng 02 card mạng.
Máy tính từ xa sử dụng Windows XP, Windows 2000, có thể đặt kết nối VPN để kết nối đến Server nói trên.


Hình 0: Mô hình kết nối


2. Cài đặt VPN Server
Trước khi cài VPN, cần Stop dịch vụ Windows Firewall/Internet Connection Sharing (ICS) và chuyển dịch vụ đó sang chế độ Disable (mặc định sau khi cài là Automatic).

Chạy Services Manager bằng cách click Start->Programs->Administrative Tools->Services. Giao diện của Services Manager như Hình1.


Hình 1: Services Manager

Trong Hình 1, tìm service Windows Firewall/Internet Connection Sharing (ICS). Chuột phải vào tên service đó, trên menu chuột phải, chọn Properties. Xuất hiện hộp thoại Windows Firewall/Internet Connection Sharing (ICS) Properties. (Hình 2)


Hình 2: Windows Firewall/Internet Connection Sharing (ICS) Properties

Trong Hình 2, lựa chọn Disabled trong ô Startup type. Và nhắp nút Stop để dừng service Windows Firewall/Internet Connection Sharing (ICS).

Sau khi dừng dịch vụ Windows Firewall/Internet Connection Sharing (ICS), tiến hành cài đặt VPN Server.

Để cài đặt VPN trên Windows 2003, chạy Manager Your Server bằng cách click Start->Programs->Administrative Tools-> Manager Your Server.

Hình 3: Manage Server

Trên cửa sổ Manage Your Server (hình 3), click Add or remove a role để cài thêm các dịch vụ của Windows 2003.


Hình 4: Configure Your Server Wizard – Preliminary Steps

Trong Hình 4, click Next để tiếp tục.


Hình 5: Configure Your Server Wizard – Server Role

Hình 5 cho phép lựa chọn các dịch vụ Server trên Windows 2003. Bước này lựa chọn Remote access / VPN server, sau đó nhắp Next để tiếp tục.


Hình 6: Configure Your Server Wizard – Summary of Selections

Hình 6 đưa ra danh sách các dịch vụ của Windows 2003 Server đã được lựa chọn ở Hình 5. Nhắp Next để tiếp tục.


Hình 7: Routing and Remote Access Server Setup Wizard – Step 1

Hình 7 là bước đầu tiên để setup Routing and Remote Access. Nhắp Next để tiếp tục.


Hình 8: Routing and Remote Access Server Setup Wizard – Step 2

Hình 8 cho phép lựa chọn các cấu hình của dịch vụ Routing and Remote Access. Bước này chọn Custom configuration. Sau đó chọn Next để tiếp tục.


Hình 9: Routing and Remote Access Server Setup Wizard – Step 3

Hình 9 cho phép lựa chọn các dịch vụ bên trong Routing and Remote Access. Bước này lựa chọn VPN access và Lan routing. Sau đó nhắp Next để tiếp tục.


Hình 10: Routing and Remote Access Server Setup Wizard – Step 4

Hình 10 kết thúc việc setup Routing and Remote Access. Nhắp Finish để kết thúc.


Hình 11: Routing and Remote Access – Start Service

Sau khi kết thúc việc setup Routing and Remote Access, xuất hiện hộp thoại yêu cầu start dịch vụ Routing and Remote Access, chọn Yes để xác nhận việc start dịch vụ đó.


Hình 12: Configure Your Server Wizard – Finish

Hình 12 thông báo kết thúc Configure Your Server Wizard. Nhắp Finish để kết thúc. Sau bước này, thực hiện việc cấu hình VPN Server.

(Còn tiếp ... )

5. VPN Client trên Windows XP

Trên Windows 2000, Windows XP, có thể tạo kết nối VPN đến VPN Server mà ta đã cài đặt và cấu hình ở các bước trên. Dưới đây sẽ hướng dẫn cách tạo kết nối VPN đến một VPN Server trên Windows XP.

Chuột phải vào biểu tượng My Network Places trên desktop, trên menu chuột phải click Properties. Xuất hiện hộp thoại Network Connections (xem Hình 25)


Hình 25: Network Connections (VPN Client)

Trên Hình 25 nhắp vào Create a new connection. Xuất hiện hộp thoại New Connection Wizard với 6 bước cấu hình.


Hình 26: New Connection Wizard – Step 1 (VPN Client)

Trong Hình 26, click Next để tiếp tục.


Hình 27: New Connection Wizard – Step 2(VPN Client)

Hình 27 cho phép lựa chọn các kiểu connect. Bước này chọn Connect to the network at my workplace, sau đó nhắp Next để tiếp tục.


Hình 28: New Connection Wizard – Step 3(VPN Client)

Hình 28, lựa chọn Virtual Private Network connection, sau đó click Next để tiếp tục.


Hình 29: New Connection Wizard – Step 4(VPN Client)

Hình 29 cho phép tạo tên cho kết nối vpn, trong ví dụ này, gõ free4vn.org, sau đó click Next để tiếp tục.


Hình 30: New Connection Wizard – Step 5 (VPN Client)

Hình 30 cho phép gõ địa chỉ IP của Server được cài đặt dịch vụ VPN Server. Có thể dùng địa chỉ IP tĩnh được gán cho Modem ADSL hoặc domain name tương ứng.


Hình 31: New Connection Wizard – Finish (VPN Client)

Hình 31, kết thúc New Connection Wizard, click Finish để kết thúc. Sau bước này, trong Nework Connection ở Hình 25 sẽ có thêm một connect có tên là free4vn.org. Để kết nối đến VPN Server, nhắp đúp vào kết nối đó. Hộp thoại Connect như Hình 32.


Hình 32: Connect to free4vn.org (VPN Client)

Trên Hình 32, để kết nối đến VPN Server cần gõ User name, Password mà ta đã khai báo trong mục 4. Tạo User trên Windows cho phép sử dụng VPN. Sau đó nhắp Connect để kết nối đến VPN Server. Có thể click Properties để thêm các lựa chọn cho kết nối đó.


Hình 33: free4vn.org Properties – tab Options (VPN Client)

Trong Hình 33, tab Options, có thể sử dụng tính năng Redial if line dropped để VPN Client tự động kết nối lại VPN Server sau khi kết nối VPN bị ngắt đoạn (có thể do kết nối Internet lỗi). Lựa chọn này cũng cho phép người quản trị VPN Server có thể reset kết nối giữa VPN Client và VPN Server.
Khi kết nối đến VPN Server, theo cấu hình ngầm định thì máy client sẽ dùng Gateway là VPN Server.

Như vậy có thể không dùng Internet trên máy client được. Để thay đổi điều này, lựa chọn tab Networking.


Hình 34: free4vn.org Properties – tab Networking (VPN Client)

Trong Hình 34, click vào Internet Protocol (TCP/IP), sau đó nhắp nút Properties.


Hình 35: Internet Protocol (TCP/IP)Properties (VPN Client)

Trong Hình 35, nhắp vào Advanced.


Hình 36: Advanced TCP/IP Settings – tab Genera (VPN Client)

Trong Hình 36, bỏ chọn Use default gateway on remote network.
Sau khi Connect đến VPN Server, trên VPN Client sẽ xuất hiện thông báo xác nhận kết nối thành công, xem Hình 37.


Hình 37: Kết nối VPN thành công (VPN Client)

Một kết nối VPN cũng như một kết nối mạng thông thường. Để xem trạng thái của kết nối đó, chuột phải vào kết nối, trên menu chuột phải chọn Status (xem Hình 38).


Hình 38: Menu chuột phải của Kết nối VPN (VPN Client)


Hình 39: Status của kết nối VPN (VPN Client)

Trong hộp thoại Status của kết nối VPN, chọn tab Details, chú ý địa chỉ IP mà Client được cấp đối với kết nối VPN đó. Địa chỉ này cũng có thể được cấp cố định với từng user (xem mục 4. Tạo User trên Windows 2003 cho phép sử dụng VPN) và cũng có thể theo dõi trên VPN Server (xem mục 6. Quản lý kết nối VPN trên Server).

6. Quản lý kết nối VPN trên Server

Trên VPN Server cũng có thể theo dõi các kết nối VPN. Khi VPN Client cung cấp địa chỉ theo dải địa chỉ mà ta đã set ở Hình 18 hoặc đối với từ user ở Hình 24.

Để theo dõi các kết nối VPN trên Server, có thể chạy Manage Your Server, sau đó click vào Manage this remote access/VPN server (Hình 13). (Hoặc có thể click Start->Programs->Administrative Tools->Routing and Remote Access).


Hình 40: Remote Access Client

Trên Hình 40, click vào Remote Access Client, trong cửa sổ bên phải sẽ hiển thị các user đang kết nối vào VPN Server. Chuột phải vào user, trên menu chuột phải, click Status.


Hình 41: Status của kết nối VPN trên Server

Trên Hình 41 là Status của kết nối VPN trên user centos4. Chú ý đến phần địa chỉ IP cấp cho kết nối đó. Và chú ý đến nút Disconnect để ngắt kết nối VPN đó.

Hết

Configuring Routing and Remote Access in Windows Server 2003 (February 17, 2005)

Published: February 22, 2005
Please note:Portions of this transcript have been edited for clarity
Introduction
Justin (Moderator):
Hi. This chat will focus on remote access server configuration for Windows Server 2003 operating systems. Discussion will cover issues, tips, and tricks for VPN, dial-up, routing, and NAT, as well as information about deploying Routing and Remote Access, streamlining administration, and troubleshooting existing remote access configurations. Join this chat if you want to discuss the techniques for configuring Routing and Remote Access or if you want to increase your technical knowledge about TCP/IP and its implementation in Windows Server 2003 operating systems.
Justin (Moderator):
Welcome to today’s chat about “Configuring Routing and Remote Access in Windows Server 2003.” We are pleased to welcome our experts for today. I will have them introduce themselves now.
MS_Janani (Expert):
Hi, I'm Janani ,an SDET in the Routing and Remote Access Server team
MS_Sharoon (Expert):
Hi I'm Sharoon working as a Test in RRAS team
MS_Pawan (Expert):
Hey all, I am tester with Routing and Remote Access Team....
Joe_MS (Expert):
I am Joe Davies, a Technical Writer for the Windows Networking and Devices group and co-author of the "Deploying Virtual Private Networks with Microsoft Windows Server 2003" Microsoft Press book.
MS_Samir (Expert):
Hello, I am Program Manager for Routing and remote access team
Justin (Moderator):
We will try to answer as many questions as we can today. Participants should type their questions, click “Submit a question,” and click “Send.” Those posts will go into a private queue, from which our experts will draft answers and repost questions in the upper window with their answers. (To confirm: if you clicked “Submit a question” when you posted, you don’t need to resubmit. We’ll get to them as soon as we can before the end of the chat (noon Pacific).
Start of Chat
MS_Pawan (Expert):
Q: How do I configure Server 2003 to recognize a printer connected to a remote user's network?
A: You can enable Routing and Remote Access Service on remote user's network to securely connect to that user's network. And then VPN to his network to access all the resources on his network including printer.

MS_Samir (Expert):
Q: which do you feel is better for a small compnay running microsoft VPN as their only sulation... L2TP or PPP ?
A: Hi Brian. PPTP is comparitively less secure than L2TP because L2TP does per packet authentication and integrity check using IPSec. But PPTP is easy to deploy. There is a comparison given in www.microsoft.com/vpn between PPTP and L2TP
MS_Janani (Expert):
Q: I have opened 20 L2TP ports and tried to close all PPP ports. It appears that you must keep at least one open....why is that ?
A:Hi Brian, Assuming that you meant it to be PPTP, you can block the PPTP traffic by setting up public filters on RRAS to block the PPTP traffic alone

MS_Samir (Expert):
Q: Jerold, I have opened 20 L2TP ports and tried to close all PPP ports. It appears that you must keep at least one open....why is that ?
A: Windows Firewall and RRAS firewall uses the same underlying filter driver
Joe_MS (Expert):
Q: ...And then VPN to his network to access all the resources on his network including printer. I don't have VPN capabilities. Are there any other methods?
A: In order to connect a Windows Server 2003 computer to a printer on a remote user's network, you must have some kind of network link to that remote user's network. There are a variety of methods, including using wired connections (such as Ethernet), wireless, or the Internet.
MS_Sharoon (Expert):
Q: which do you feel is better for a small company running microsoft VPN as their only solution... L2TP or PPP ?
A: VPN server losing LAN connectivity due to filters.
A. This can due to the default filters that have been applied on the NIC. This will only allow VPN connections. Delete the inbound and outbound filters applied on the NIC on RAS server. Go to RRAS console -> Click on IPRouting -> General -> right click on the NIC -> Properties - > IP tab -> Inbound
MS_Janani (Expert):
Q: Brian: why is surfing the internet while connected to the VPN is noticeably slow. I thought by default, internet traffic is suppose to pass through
A: When you check the 'Use remote default gateway' on your client connectoid, all traffic gets routed through the vpn connection and hence it is comparitively slow....
Justin (Moderator):
For those just joining us, today’s chat is about “Configuring Routing and Remote Access in Windows Server 2003.” To post a question, please click “Submit a question,” type your question, and click “Send.” That way, we can track which questions we still need to answer.
We will post a transcript of the upper window within a few days at http://www.microsoft.com/technet/com...s/default.mspx.
MS_Pawan (Expert):
Q: I am unable to use any FTP site (like ftp://ftp.microsoft.com/reskit/) in the IE address bar on any computer and the only thing they have in common is NAT on W2K3. I get an error trying to open the folder on ALL O/Ses. What should I look at?
A: Jerold, If the client machines behind NAT then execute command "Netsh routing ip nat add ftp" to enable ftp editor. To revert to old behavior do "netsh routing ip nat delete ftp". While doing this make sure ALG service is started.
MS_Samir (Expert):
Q: I am unable to use any FTP site (like ftp://ftp.microsoft.com/reskit/) in the IE address bar on any computer and the only thing they have in common is NAT on W2K3. I get an error trying to open the folder on ALL O/Ses. What should I look at?
Q: Jerold you asked a question related to Windows 2003 SP1 - if windows firewall is supported - why there is basic firewall?
A: I was answering that. Basic firewall and Windows firewall use the same underlying packet filter driver, so your filtering behavior is same
Joe_MS (Expert):
Q: I suspected "Windows Firewall and RRAS firewall uses the same underlying filter driver", continuing the use of 2 different GUIs, even through R2, seems anti-friendly.
A: Both Windows Firewall and the NAT/Basic Firewall use the TCP/IP firewall hook API. However, these different components expose different capabilities. Windows Firewall only allows you to configure TCP and UDP port-based exceptions for incoming traffic and is more suited to a client-based firewall. NAT/Basic Firewall allows you to configure exceptions for IP protocols and ICMP traffic for both incoming and outgoing traffic, which is better suited to a server-based firewall.
Joe_MS (Expert):
Q: In order to connect a Windows Server 2003 computer to a printer on a remote user's network, you must have some kind of network link to that remote user's network. Is this a permanent link, or can it be set up by individual users when they want to use RDT
A: It can be permanent or temporary, as long as a link to the remote user's network exists when adding the printer or printing.
MS_Sharoon (Expert):
Q: I suspected "Windows Firewall and RRAS firewall uses the same underlying filter driver", continuing the use of 2 different GUIs, even through R2, seems anti-friendly.
A: Why does the RRAS Client lose its route
When you make a VPN connection, your current default route should become
ineffective and the VPN connection should become your default gateway. See
KB 254231. If you do a route print while the connection is up, it should show the default route 0.0.0.0 using the VPN interface with a priority of
1. This should only change if you fiddle with the "use default gateway.." setting in the connection properties.
MS_Samir (Expert):
Q: Since there are no questions.... maybe the experts can give us some of there tips to enhance the vpn bandwith
A: You can see useful information related to this at following link http://www.microsoft.com/technet/arc...n/optimiz.mspx
MS_Sharoon (Expert):
Is there a RRAS monitoring tool for XPYou can install the Admin Pack from the Windows 200 Server Media (I386\AdminPak.msi ) This will have the RRAS snap-in. Additionally you can utilize Netsh. Or you can enable Remote Admin on the server and use the Remote Desktop client to run the server desktop on your workstation.
Joe_MS (Expert):
Q: Windows Server 2003 computer to a printer on a remote user's network, you must have some kind of network link to that remote user's network. IS there a technical name for this type of connection?
A: I am assuming that you are trying to use a remote cNo. You just need network connectivity (wired, wireless, or Internet) to the remote user's network and, if you are referring to the remote printer by the server name (such as \\printserver\HPLJ1) the ability to resolve the remote computer's name to its network address.
MS_Janani (Expert):
Q: Brian: MS_Janani (Expert): is there a way to get around 'Use remote default gateway'
A: Hmm...If you uncheck this then you have to set up routes manually to reach the subnets on the server side...
Joe_MS (Expert):
Q: Windows Server 2003 computer to a printer on a remote user's network, you must have some kind of network link to that remote user's network. IS there a technical name for this type of connection?
A: Assuming that you are trying to print to a printer attached to a computer attached to a remote network, you just need network connectivity (wired, wireless, or Internet) to the remote user's network and, if you are referring to the remote printer by the server name (such as \\printserver\HPLJ1) the ability to resolve the remote computer's name to its network address.
MS_Sharoon (Expert):
Can you assign a fixed IP on VPN Client? You can allocate a fixed IP per dial-in user rather than per device by selecting the properties of the user in ADUC and under the "Dial-in" tab check and fill in the entry for "assign a static IP address". But this works only if you are running AD in native mode.
MS_Janani (Expert):
Q: I've used that but I'm looking for a bit more.........like seeing the users data if going or coming in.
A: Donna, what exactly is your requirement? Can you be more specific?
MS_Pawan (Expert):
Q: I tried "Netsh routing ip nat add ftp" on the W2K3 NAT server, but cliients (and Server) are still not able to seen the FTP folder?
A: Do you have any more firewall in front of you? If NAT server is not able to able to access FTP Folder then most probably issue is with link forward. Remember any traffic initiated from NAT server is not translated because NAT Server already will have a public address.
Justin (Moderator):
Hi vcd. If you have a question about RAS, please click “Submit a question,” and click “Send.”
MS_Janani (Expert):
Q: I've used that but I'm looking for a bit more.........like seeing the users data if going or coming in.
A: Do you want to monitor a connection or do you want to monitor the users logging on to the server?
Joe_MS (Expert):
Q: ...referring to the remote printer by the server name (such as \\printserver\HPLJ1) the ability to resolve the remote computer's name to its network address. I am trying to use RDT. How would I establish this connection?
A: See http://www.microsoft.com/windowsxp/u...y/default.mspx for information about Remote Desktop.
Justin (Moderator):
For those just joining us, today’s chat is about “Configuring Routing and Remote Access in Windows Server 2003.” To post a question, please click “Submit a question,” type your question, and click “Send.” That way, we can track which questions we still need to answer.
Joe_MS (Expert):
Q: What is a program that can measure the bandwidth realtime and logging?
A: You can use the "Performance Logs and Alerts" snap-in as part of the Computer Management administrative tool and add counters for the "Network Interface" Performance Object and the "Current Bandwidth" counter.
MS_Pawan (Expert):
Q: FTP problem. I am being very blond today and don't know what to look at re "Link Forward"?
A: Do you have liberty to stop remoteaccess service on NAT Server. If yes then stop it so that NAT is now out of picture. Now try to access ftp sites. If you are still not able to then you should contact your service provider regarding this.
Justin (Moderator):
We will need to wrap up this chat in about 5 minutes. Please post any other questions (click “Submit a Question”) that you would like us to answer. Thanks.
Justin (Moderator):
We will post a transcript of the upper window within a few days at http://www.microsoft.com/technet/com...s/default.mspx.
MS_Samir (Expert):
Q: I am facing name resolution issues when Windows 2003 server is installed with RRAS, DNS and WINS?
A: You are facing this problem because RRAS Internal ip address is registered in DNS/WINS. Please refer to KB article at http://support.microsoft.com/kb/2928...r%20resolution
MS_Sharoon (Expert):
Q: Name resolution Issues
A: If your work network uses WINS, try putting the WINS server IP address in
your network connection settings. If there's no WINS, see
http://support.microsoft.com/?scid=kb;en-us;180094 for help writing an
LMHOSTS file.
Also see http://support.microsoft.com/default...b;en-us;150800
RAS/VPN links don't carry LAN broadcasts, so a remote doesn't work like a LAN client does. If you are not running DNS or WINS, you will have to fall back to HOSTS or LMHOSTS files to resolve names of LAN machines
MS_Sharoon (Expert):
Q: What is eap cert, machine cert root cert?
A: Here are some topics that might help you understand them: http://www.microsoft.com/resources/d..._CMtopNode.asp and http://www.microsoft.com/resources/d...introCerts.asp
Justin (Moderator):
We will need to wrap up this chat in about 5 minutes. Please post any other questions (click “Submit a Question”) that you would like us to answer. Thanks.
Joe_MS (Expert):
See http://www.microsoft.com/windowsserv...n/default.mspx for information on VPNs in Windows Server 2003. See http://www.microsoft.com/windows2000...pn/default.asp for information on VPNs in Windows 2000 Server.
MS_Sharoon (Expert):
Q: I have a SBS 2003 Server that can send/recieve email to the network, but when starting RRAS service, I get Event ID: 7024 Service Specific: 499 I have searched everywhere and can't find anything. I have tried to rebuild to IAS database, and nothing. ideas?
A: Is Remote Access Connection Manager service, Remote Access Auto Connection Manager, and the Telephony service are enabled and running?
Justin (Moderator):
Q: I have a SBS 2003 Server that can send/recieve email to the network, but when starting RRAS service, I get Event ID: 7024 Service Specific: 499 I have searched everywhere and can't find anything. I have tried to rebuild to IAS database, and nothing. ideas?
A: I'm sorry folks but we have run out of time. The experts will try to research any remaining questions and we will try to add them to the transcript. We will post the transcript of the upper window for this chat in a few days at http://www.microsoft.com/technet/com...s/default.mspx.
Justin (Moderator):
Q: is there somewhere that I can help the experts look for my error code 7024 499?
A: I'm sorry folks but we have run out of time. The experts will try to research any remaining questions and we will try to add them to the transcript. We will post the transcript of the upper window for this chat in a few days at http://www.microsoft.com/technet/com...s/default.mspx.
Justin (Moderator):
Q: yes, those three services are started correctly.
A: I'm sorry folks but we have run out of time. The experts will try to research any remaining questions and we will try to add them to the transcript. We will post the transcript of the upper window for this chat in a few days at http://www.microsoft.com/technet/com...s/default.mspx.
Justin (Moderator):
Q: Brian: when users are using VPN they are unable to browse the network but are able to connect via IP and name. why is this?
A: I'm sorry folks but we have run out of time. The experts will try to research any remaining questions and we will try to add them to the transcript. We will post the transcript of the upper window for this chat in a few days at http://www.microsoft.com/technet/community/chats/trans/default.msp.
Justin (Moderator):
Thank you for joining us today on a Microsoft Community Chat to talk about “Configuring Routing and Remote Access in Windows Server 2003.” We will post the transcript of the upper window for this chat in a few days at http://www.microsoft.com/technet/com...s/default.mspx. Thanks, all!