This Mini-How-To was created as an example of one way to remotely access a home office network using a Virtual Private Network (VPN) Point-to-Point-Tunneling-Protocol (PPTP) connection over the public internet using a variety of off the shelf technologies available to the home user. This page is a work in progress and may be added-to or updated as time allows.
The screen shots are of a ActiveSync session connected through a PPTP VPN tunnel using the PocketPC PPTP VPN client on an iPAQ 3835 running the Windows Mobile 2003 Operating System (WM 2003). The PocketPC connection to the public internet is made using an 802.11b wireless Hotspot or a Targus Pocket 56K V.90 dial modem connection.
The VPN server runs on a Windows XP Pro platform. Included are general configuration settings for both the server and the PocketPC client. The example is based on access over the public internet to a home Local Area Network (LAN) and presumes a routable active connection. The procedure also assumes both the WM 2003 OS Connection Manager and ActiveSync have been configured correctly.
The XP Pro VPN Server is configured using Bob Cerelli's How-To Setup a Windows XP VPN Server page as a general guide. Some of the settings are default values and were not changed.
The assigned IP address range is intentionally restricted. The top address is assigned by the XP VPN server as the gateway address and the bottom IP is the last possible address assigned to VPN clients.
The local LAN BEFSR41 broadband router is configured to allow PPTP VPN access. TCP Port 1723 and GRE Protocol 47 are used to pass VPN traffic through the firewall. Some router manufacturers call this PPTP Pass Through or VPN Pass Through. Check the users manual for your specific router for details.
Tap on an individual image to display a larger
version
The XP SP2 Windows Firewall must also be configured to allow PPTP VPN access. GRE Protocol 47 traffic is automatically enabled through the Windows Firewall when TCP Port 1723 is opened.
Configure access to the public internet using an 802.11b wireless Hotspot and the PPTP VPN client.
Configure a 56K dial modem connection to an ISP.
To synchronize with the desktop PC tap the Sync icon at the middle left of the ActiveSync window on the PocketPC. Input required user account information when prompted and wait for the status indicator and connection message(s) that indicate a successful connection. This presumes the ActiveSync partnership has previously been established using either a USB, Serial or Infrared connection to the desktop PC.
The XP Pro VPN Server Incoming Connections status reflects the remote connection by the PocketPC client.
End the ActiveSync connection by tapping the Stop icon.
End the VPN and dial connections by tapping the Disconnect button.
The Connection Manager should be reconfigured for use with a local wired Ethernet or wireless 802.11b network after the dialup/wireless hotspot session has been ended.
| Last reviewed: 4 December
2005...awj Copyright © 2006 - Alan W. Jarvi - All rights reserved The Microsoft MVP Program |
 |