I have two sites. Main office and remote site. Both sites are connected by a site-to-site vpn appliance. The main office router is a Linksys RV042 and the remote office is a Netgear FVS318. The Linksys router also has a built in PPTP server which I use for laptop users away from the office. All workstations/servers in the main office use the Linksys router as their gateway. At this time, I do not have RRAS running anywhere. My question is this. Can I enable RRAS at the main office to allow laptop users to vpn into the company and still maintain everyone using the Linksys as their gateway, as well as have the linksys assign ip addresses from the built in dhcp server? Any help appreciated. Thanks! Rob

I don't understand your thinking here. The Linksys RV042 is a vpn appliance which how your laptop users get access to your network. There is no need for RRAS vpn with your setup. 'tis the season to be of good cheer. Wishing one and all happy times with family and friends.

The drawback of using the vpn appliance for laptop users is the built in pptp server is limited. I have to create a user, with a password. That username/password combination has no relation to Active Directory users. What I like about using RRAS is the fact that users can use the "log on using dialup connection" when they first log into xp. It's a bit of a pain to use that feature with the username/password combo created with the rv042. Do you see my delima? Is it possible to use RRAS and RV042 together for the scenario described earlier? Rob

you would need to do this config assuming your router supports Radius authenication. http://support.mof.go.th/radius_win... 'tis the season to be of good cheer. Wishing one and all happy times with family and friends.

I'm kind of confused. If I set up RADIUS in Server 2003, what would my setup be? Would be be both services that I mentioned earlier? Rob

If you want to runn RRAS you would need to open up ports in your firewall and disable the vpn client option on that firewall. Not something I would do due to the lessening of security. Now if you want AD authenication and the router supports RADIUS you have the article to accomplish that. In this case you would not use RRAS but IAS. 'tis the season to be of good cheer. Wishing one and all happy times with family and friends.

OK, that makes sense. I already confirmed that the router does not support radius, so I will just open up ports. Will opening up the ports (1723 I believe) mess with the ipsec tunnel between that router and the remote office router? Rob