Question : Microsoft VPN through restrictive firewall.

Here is a complex network riddle. I'd like to know if this is possible and if so, how to make it work.

Background:
My on-campus housing network just changed from public IP addresses to private IP addresses. The school's firewall has the following ports open and these won't change: 22, 23, 53, 80. I personally have a router that is performing NAT for my home LAN of XP machines (because I only get one IP from the college). I have a client that I do basic server/pc work for. My client is running Windows 2000 Server behind a router running NAT for his office LAN. He is getting on the internet via aDSL with a dynamic IP address. At work, our firewall is just about as restrictive as home. I've been going out through port 80 to my home router which redirects to port 3389 for remote desktop. Now that my IP is private I can't do this.

Idea:
What I'd like to do is this. Set up VPN server/services on the Windows 2000 Server and tunnel out of my school network to the server. The server should provide my home PC with an IP address on my client's office LAN. I'd like to set the VPN connection to always stay connected so that I can then open a remote desktop connection through port 80 out of my work network to my client's IP address (already using a dynamice DNS service) and have the router there redirect to my home machine's VPN-assigned IP address.

Questions:
Can I tunnel out through one of the available ports on my school network and make the connection to my client's VPN server?
If so, can I make the VPN always stay connected and reconnect if connection is lost.
If so, will I be able to get an IP address assigned to my home PC on my client's office network?
If so, would NAT on my client's office be able to redirect to the VPN connected machine.
If so, how...

Extra information: my router is and SMC wireless barricade. The office router is d-link di-604. My client has no problem with my doing this.

Thanks a lot.

Answer : Microsoft VPN through restrictive firewall.

Can I tunnel out through one of the available ports on my school network and make the connection to my client's VPN server?
No IPSEC and VPN use static ports on windows as far as I know and it uses UDP this for native vpn.
However an option is to use http://openvpn.sourceforge.net/ which you can modify to use your specific port. The problem is that is used an UDP as most vpn solutions do.

If so, can I make the VPN always stay connected and reconnect if connection is lost.
It should reconnect automatically it is in the nature of the product

If so, will I be able to get an IP address assigned to my home PC on my client's office network?
From you cliensts office ? I think something is wrong in this question but do explain

If so, would NAT on my client's office be able to redirect to the VPN connected machine.
Nat and VPN is hard to let it happen. You need to support UDP encapsulation and native windows vpn does not support it.
Use SSH tunnels if you like to have NAT support
If so, how...

Random Solutions

Sending emails without being blacklisted

What client issued a DNS request in a Windows domain?

DNS server not updating

Connecting 2 routers over a long distance?

can the netstat results help tell what using up my bandwidth

DNS firewall rule generating a lot of WAN traffic

3G CDMA VS GPRS 500 PTS

Asterisk Recording and Screen Pop

Forward port 3389 on a Ellink router

How to pass proxy server using thirty party proxy?