How To Configure Windows 2000 Professional to Windows 2000 Professional Virtual Private Network Connections (257333)



The information in this article applies to:

  • Microsoft Windows 2000 Professional

This article was previously published under Q257333

SUMMARY

This article describes how to configure Windows 2000 Professional to Windows 2000 Professional virtual private network (VPN) connections. Prior to Windows 2000 Professional, Microsoft did not offer the ability to connect two client computers over a VPN connection. Previous versions of Windows required you to add the Point-to-Point Tunneling Protocol (PPTP) on Windows NT 4.0 Server to establish VPN connections. With the release of Windows 2000 Professional, Microsoft offers the ability to connect two clients that run Windows 2000 Professional by using VPN technology. Windows 2000 Professional enables only one VPN connection at a time and requires Internet Protocol (IP).

back to the top

Configuring the Windows 2000 System


Before you start the configuration, ensure that the following preparations have been made on the Windows 2000 Professional-based computer:

  • If you use dial-up equipment to connect to the Internet, install your dial-up equipment (for example, your modem or Integrated Services Digital Network [ISDN] adapter) and add the appropriate support. For modems, add the modem; in Control Panel, double-click Modems. For ISDN adapters, follow the manufacturer's instructions to install the adapter and the device driver in Windows 2000.
  • If you use permanent-link equipment to connect to the Internet, install the equipment (Digital Data System [DDS], T-Carrier, Frame Relay, asymmetric digital subscriber line [ADSL], or cable modem) and add the appropriate support.
  • Ensure that the IP and support for your internal network adapter is installed during the configuration of networking options.

back to the top

Enable an Incoming Connection on Windows 2000 Professional System

  1. Right-click My Network Places, and then click Properties.
  2. Right-click Make New Connections, and then click New Connection to start the New Connection Wizard.
  3. Click Next.
  4. On the Network Connections Type dialog box, click Accept Incoming Connections, and then click Next.
  5. On the Devices for Incoming Connections dialog box, do not select any device, only click Next.
  6. On the Incoming Virtual Private Connection dialog box, click Allow Private Connections, and then click Next.
  7. On the Allowed Users dialog box, select or add all users for whom you want to enable access. The accounts have to exist on both computers that are involved in establishing the VPN connection.
  8. On the Networking Components dialog box, click Next to accept all networking components. File and Printer Sharing for Microsoft Networks, and Client for Microsoft Networks should be listed as networking components.
  9. On the Completing the Network Connection Wizard dialog box, the connection name is "Incoming Connections" by default and the name cannot be changed.
  10. Click Finish.

back to the top

File and Printer Sharing for Microsoft Networks

The File and Printer Sharing for Microsoft Networks component enables other computers on a network to access resources on your computer by using a Microsoft network. The component is installed and enabled by default. The component is enabled on each connection and is necessary to share local folders. The File and Printer Sharing for Microsoft Networks component is the equivalent of the Server service in Windows NT 4.0.

back to the top

Client for Microsoft Networks

The Client for Microsoft Networks component enables a computer to access resources on a Microsoft network. The component is installed and enabled by default. You do not need to configure this component. The Client for Microsoft Networks component is the equivalent of the Workstation service in Windows NT 4.0.

back to the top

Create a Connectoid to Build a VPN from a Windows 2000-based Client


  1. Right-click My Network Places, and then click Properties.
  2. Right-click Make New Connections, and then click New Connection to start the New Connection Wizard.
  3. Click Next.
  4. On the Network Connection Type dialog box, click Connect to Private Network through Internet, and then click Next.
  5. On the Public Network dialog box, if you need to dial an Internet service provider (ISP) to connect to the Internet, click Automatically Dial This Initial Connection, and then click the appropriate phone book entry.

    NOTE: The phone book entry must exist before you configure the VPN connection. If the phone book entry does not exist, click Do Not Dial the Initial Connection.
  6. On the Destination Address dialog box, type the IP address of the Windows 2000 Professional-based computer to which you are attempting to connect, and then click Next.
  7. On the Connection Availability dialog box, click All Users or click Only Myself, and then click Next.
  8. On the Completing the Network Connection Wizard dialog box, give this connectoid a name, and then click Finish.

back to the top

Modification Type:MinorLast Reviewed:1/20/2006
Keywords:kbenv kbhowto kbHOWTOmaster kbnetwork KB257333 kbAudITPro