Skip to main content

Upgrade from Server 2000 to Server 2003

More
17 years 1 month ago #23285 by skepticals
I need to upgrade windows 2000 server to windows 2003 and had a few questions.

1) Can I simply upgrade the server? or do I have to format and reinstall?

2) Does Windows 2003 act as a VPN server? with/without additional software? If so, how many users can it support?

3) Where is a good place to purchase the software and CALs in the USA?

Any help is appreciated! Thanks.
More
17 years 1 month ago #23286 by Smurf
Can help with some of the questions;

1. I have always found its best to install from scratch, although upgrades have improved since the days of Windows 95/98 its always better to do fresh install to ensure full compatability with everything (drivers, etc..).

2. Windows 2003 has RRAS which can support VPN connectivity. Its going to be better if you are utilising this for outside connectivity to install something like ISA Server to secure the connectivity further. Also, there are dedicated hardware devices aswell that can provide this. SSL VPN is an upcoming technology, but it depends what you plan to use it for.

Cheers

Wayne Murphy
Firewall.cx Team Member
www.firewall.cx

Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
More
17 years 1 month ago #23295 by skepticals
Thanks for the information.

I only need VPN access for 3 users and not all at one time. Would the Server 2003 built-in features work for this situation?
More
17 years 1 month ago #23297 by Smurf
Yes that should be ok, my only question would be where the VPN users are coming from ? I would not recommend installing Windows 2003 directly on an Internet Link without some for of Firewall (although you can harden the Win2003 server, its still not ideal).

Cheers

Wayne

Wayne Murphy
Firewall.cx Team Member
www.firewall.cx

Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
More
17 years 1 month ago #23301 by skepticals
Currently, their server is only behind a normal Linksys router with no firewall. I have already explained the need for a firewall. They currently have remote access (RDP) available to the server. Would enabling VPN be any less secure than it already is?
More
17 years 1 month ago #23302 by Smurf
VPN would be more secure as you can do much more on the encryption and Authentication then with just RDP. Is the router just an ADSL Router which NAT's everything and you have had to setup port translation ? Its much more difficult to configure VPN connectivity if you are dealing with NAT anywhere on the link as thats part of the security built into the VPN. They do have NAT-T which can simplify the VPN connection over NAT devices and also if you make sure you use ESP and not AH you will be ok. AH is pretty much redundant anyway because ESP can also do Authentication along with Encryption.

Wayne Murphy
Firewall.cx Team Member
www.firewall.cx

Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
Time to create page: 0.139 seconds