[Q] LAN-to-LAN static VPN?

[Matthew Ritenburg]

I have a local and remote firewalled NT domains. I have identical cisco
2611 routers with IOS 11.3. I want to establish an encrypted tunnel
between the two points through a public network (internet) for the
purpose making the domains visable to one another. This connection
needs to be static.

I am under the impression an IPSec tunnel will provide the encryption
and a PPTP connection will allow NetBEUI over TCP/IP. Am I correct in
thinking this? Is there an easier way to share NT domains through an
ecrypted tunnel over the internet?

Thanks in advance,

-Matthew

[Tony Northrup]

PPTP is definitely the best method, though NT 4 does not support IPSec
(Windows 2000 will). You must be going between two NT Servers with the
RRAS update installed (available freely from www.microsoft.com). Chapter
13 of the book 'NT Network Plumbing' documents how to create this type of
tunnel, and discusses the various technologies you can use. Good luck.

| Tony Northrup, MCSE, Compaq ASE
| Author, NT Network Plumbing, available at:
| http://www.amazon.com/exec/obidos/ASIN/076453209X/tonynorthrup

[Matthew Ritenburg]

Does this book discuss LAN-to-LAN connections? I would like to have all users
at both ends access both domains at any time. Is this covered?

Thanks again,

-Matthew

[^Erik Whiteway]

Depending on what firewall you use the tunnel should be done firewall to
firewall. I have two sites. Both with T1 links to the internet. I have 2
Raptor firewalls controlling access to the net, and they VPN between them
(one network is 192.168.101.X and the second is 192.168.100.X) If you do it
firewall to firewall there are no extra routes to add. It's like my two
networks are actually one. I only run one domain with a PDC at one site and
a BDC at the other.

If you want more info let me know

Erik

Matthew Ritenburg wrote in message <369487B7...@opensite.com>...

[Matthew Ritenburg]

Do you have links or info regarding a firewall to firewall VPN?

Thanks again,

-Matthew