Social Web
Email
Close

How to set up a VPN at home

Nutter's Help Desk By Ron Nutter , NetworkWorld.com , 04/26/2004

Share/Email
Tweet This
Comment
Print

Could you explain the process of setting up a VPN in a home network? I'm using Windows 2000 server. I have cable internet with a dynamic IP address and a Linksys router connecting all PCs. I'm looking an explanation of the hardware and software configurations I would need to make to get this VPN up and running.
- Via the Internet

First, talk to your ISP and get a fixed IP address assigned to you. This will make the process of connecting to the VPN at home easier as you can use a fixed IP address. An alternative to this is to subscribe to one of the Dynamic DNS services, in which your changing IP address is periodically re-resolved to a host name you've registered with them. Be sure to check with your ISP to see if you need to subscribe to a higher level of service to allow IP Security traffic to flow onto your ISP's network. Some ISPs have started blocking IPSec/VPN traffic unless you have subscribed to a "business" level of access.

Click here for information from Microsoft's Web site that should get you started on getting a VPN setup using your Windows 2000 server. I would suggest looking at a hardware-based solution for your VPN link at home. There are several vendors that can help you do this: Linksys, Cisco and Multitech are just three I can think of that have broadband-type firewalls that offer a hardware-based VPN solution.

I prefer a hardware-based VPN because it's one less service running on a server and one less thing to troubleshoot. It also provides more protection for the server by off-loading the VPN function and reducing potential exposure to the server if the VPN service were somehow compromised. You are also protecting the server by adding an additional layer of protection outside the server. With this type of solution, you will need to install some type of software client on the machine you're using to remotely access your network at home. You will need to check the network you're going through to access your home network to make sure it allows IPSec/VPN traffic to leave the network - not all systems to by default.