I have a vpn connection to our SBS2003 box. What I would like to do is have
that point to just one workstation which some remote users will then use for
one specific piece of software which is on there.

How can I make ISA, after it recognises the source IP no., point to this one
machine which has a fixed ip. eg 192.168.16.16?

Andrew

Andrew Prior wrote:

You can't "redirect" the VPN to a specific workstation.

What you can do is control what traffic is allowed to pass over the VPN
tunnel. So you could filter the tunnel to only (say) permit HTTP to a
specific internal resource.

You manage this using the Remote Access Policies in RRAS. Within a RAP,
you can specify IP filters both for inbound and outbound traffic.

All of this assumes that the software in question is network-capable,
and doesn't just run on the workstation - if it does, you will probably
have to use Remote Desktop.

If you do start working with Remote Access Policies and filtering, I'd
strongly suggest that you create a separate Policy just for this
specific case, and make the Policy apply to a Group. Then to make it
apply to certain users, you just add them to the Group.

--
Steve Foster [SBS MVP]
---------------------------------------
MVPs do not work for Microsoft. Please reply only to the newsgroups.

Many thanks Steve. I have set it up now to work for our client with remote
desk top, which it does well from my laptop on a dial up..
I have a sneaky suspsicion I am running into trouble, however.

He has a sbs2003 network set to 192.168.16.2 as the server.
I can't connect from my own network at home from a workstation, which also
has that IP no and an sbs2000 server. All the firewall filtering is OK

Likewise from work (192.168.100.1 as the server sbs2000); it has connected
the VPN a couple of times and then kicks me off fairly soon. Mostly the vpn
will not connect. The remote desktop doesn't work at all. But I can use my
laptop with a dial up via another isp instantly after this and get in. I
reckon I am getting into some kind of IP address conflict maybe. Would you
have an opinion?

The point of this exercise is that they want an accountant to come in and
work remotely on one machine....

Andrew



"Steve Foster [SBS MVP]" <steve.foster@picamar.co.uk> wrote in message
news:xn0dnhltg6s7grp003@msnews.microsoft.com...

Mmmm... worked that out, it seems. I cut out part of the remote LAT so we
have nothing in common, and it works!
Andrew
"Steve Foster [SBS MVP]" <steve.foster@picamar.co.uk> wrote in message
news:xn0dnhltg6s7grp003@msnews.microsoft.com...