Configuring site-to-site VPN access
Published: November 15, 2009
Updated: February 1, 2011
Applies To: Forefront Threat Management Gateway (TMG)
Using Forefront TMG, you can allow clients on remote networks to connect to resources on your corporate network by establishing a site-to-site virtual private network (VPN). The following topics describe how to configure a site-to-site VPN connection:
Creating a user account to authenticate the remote site—Describes how to create a user account so that the remote site can authenticate to the VPN gateway.
Creating a VPN remote site connection—Provides step by step instructions for creating a remote site connection using the Create VPN Site-to-Site Connection wizard.
Testing the configuration (site-to-site)—Describes how to test site-to-site connectivity by trying to access a computer on the remote network.
Configuring addresses for NLB-enabled remote sites—Describes the special considerations when working with remote sites that use Network Load Balancing.
Configuring EAP authentication—Describes how to complete the configuration of Point-to-Point Tunneling Protocol (PPTP) and Layer Two Tunneling Protocol (L2TP) networks, using Extensible Authentication Protocol (EAP).
Terminating inactive VPN connections automatically—Describes how to configure Forefront TMG to terminate inactive connections on PPTP and L2TP VPN networks.