XP IPsec L2TP VPN Server

By Baljit Singh CCNA trainee ·
I have a XP client - XP server PPTP VPN link. The VPN client is external to the network ; that is it is placed 'outside' on a the internet and acceses the VPN server which is 'inside' of the Router; ; the vpn xp server and adsl router are on network LAN....I use a Netgear V3 DG8430G router. The vpn xp client gets allocated a dhcp pptp ip address of about 192.168.101. I use Preshared keys. I dnt have a DNS Server or host files or WINDOWS SERVER. The pptp vpn connects but if i change the client protocol settings to L2TP ipsec doesnt connect to my VPN XP server. Do you think I havent set portforwading correctly or fully on my router? I have only enabled 1 portforwarding service on my router firewall to the vpn xp server.....even if I change this to the other one L2TP IPSec (router portforward) it wont allow me to connect either from the router or at the xp vpn server. I only use 1 network card from the XP VPN server to the Router; the router then connects by a filter to the ADSL internet. The L2TP ipsec registers on my routers log!! But I get an error on my XP VPN client(ie smthng of the nature that L2TP isnt comaptible I need to make Services, Local Policy, Registry changes on the XP VPN server? Do I need to enable another portforwarding setting on my router eg 'VPN L2TP ipsec 'PASS THRU'' that I have heard of.

How can I then use the L2TP IPsec to create a kind f remote mangement of the VPN Server machine ..using windows or logon securely onto my VPN Server machine to access the Use3r/Admin account to display DESKTOP, MY Computer, My Documents etc...on the VPN Server?

I tried altering the VPN SERVER Account to Administrtaor but it made no difference in it the same with L2TP...I cannot seem to actually able to control any applications on the VPN server aprt from just ping it or just a bare skeletal REMOTE COMPUTER MANAGEMENT CONSOLE? DO I need to create further policies on the vPN server...if so what? Or would you recommend using an ACTIVE DIRECTORY or DOMAIN architecture to logon with on the XP VPN Server to gain full encrypted (like ssh but in windows)control of my XP VPN PC????

if you can help...I would be very grateful and it would definitely attract me back to this forum & website

Baljit Singh

replies to

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Answers

Collapse -

good try - try again

by CG IT In reply to XP IPsec L2TP VPN Server

So here is a question for you, what are you doing when you use VPN?

Once you can answer that question, the methods used for the outcome you want will be answered.

If you don't know, visit Microsoft's Technet web site and search "remote access". There will plenty of documentation on the theory and step by step instructions of remote access using a Windows platform.

Oh and you should read about the limitations of Windows XP being used for Remote Access.

Collapse -

Use Remote Desktop (RDP)

by Hillyman In reply to XP IPsec L2TP VPN Server

It sounds to me like you should be using Remote Desktop instead of futzing around with the complexities of VPN protocols and configurations. All you need is XP Professional on the host machine. Here is my recommendation:

Give the host machine a static IP address and enable remote desktop. To enable remote desktop: right-click My Computer, select Properties, go to Remote tab, make sure "Allow users to connect remotely to this computer" is checked.

On the router, make sure that port 3389 is forwarded to the static IP address you setup on the host machine.

On the client, use Microsoft's Terminal Services Client to connect to the desktop on the host machine. To open the Terminal Services Client on the client machine: click Start, then Run, then type "mstsc" and press enter. In the "Computer" field you will need to enter your public IP address - the static IP address you got from your internet service provider (look at the settings in your router or go to while using the host machine). You can access a number of neat options for the connection by clicking on the "Options" button and flipping through the tabs. When you finish setting the options, click "Connect" and log in to your host machine just like you were sitting in front of it.

If you do not have a static IP address from your ISP, check out DynDNS's free service and setup the DynDNS Updater on the host machine.

Be sure to set a complex password on the host machine for security reasons.

You can change the default Remote Desktop Protocol port on the host machine for security reasons and to connect to multiple hosts behind a router.

Hope this helps!

Collapse -


by variek In reply to XP IPsec L2TP VPN Server

there are many <a href="">IPsec VPN</a> Tutorial and Setup PPTP L2tp and Others........

Related Discussions

Related Forums