IP address security

  • Article

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

IP address security

If you are using a private IP address range (for example, 10.0.0.0-8, 172.16.0.0-12, 192.168.0.0-16), you can find a path through the Internet by providing valid, public IP addresses for the virtual private network (VPN) client and the VPN server. The original IP packets, those with the private addresses of your source and destination, are encapsulated using Point-to-Point Tunneling Protocol (PPTP) or Layer Two Tunneling Protocol (L2TP) during data transfer over non-secure networks. Because the IP packets are also encrypted, the private addresses are protected. Internet users see only the public IP addresses of the VPN client and the VPN server. In this case, and whenever you use private IP addresses, there are no administrative costs associated with changing IP addresses for remote access.

Note

  • It is possible to use a nonregistered IP address range (a range of private IP addresses that overlaps with the valid, public IP addresses that are used on the Internet), but it is not recommended.

For information about creating a VPN connection, see Make a virtual private network (VPN) connection.