Install VPN in Windows 2008 R2 Standard Edition
A virtual private network (VPN) extends a private network across a public network, such as the Internet. For Example VPNs allow employees to securely access their company's intra-net while traveling outside the office. VPN remote users get the impression of being directly connected to the central network via a point-to-point link.
VPN in Windows Environment
Requirements :
Minimum 2 IP addresses (must be in the same subnet)
Installing VPN in Windows 2008 R2 Standard Edition
First of all, we have install the “Rmote Access” Role via Server Manager. Please follow the steps below in order to do it.
1)Open “Server Manager“.
2)Right Click on the “Roles” and click on “Add Roles”
3)Place check mark on “Network Policy and Access Services” and click “Next” to continue
4)On the following screen, Place check mark on “Routing and Remote Access Services” which will automatically enable “Remote Access Service” and “Routing” . Click on Next.
5)On the next screen, click on “Install” button. Once the installation finishes, click “Close” to end the wizard.
As soon as the Role installation completes, we can start configuration of VPN, Please follow the steps below in order to do it.
1)Back on the main Server Manager window, right click on “Routing and Remote Access“ and click on Configure and Enable Routing and Remote Access”
2)This will pop up “Routing and Remote Access Wizard” .
3)Since there is only one network interface we will need to choose Custom Configuration. Check the button related to “Custom Configuration' and click on Next.
4) Place a check mark on “VPN access” and click “Next” to continue.
5)Click on “Finish' and then click on the “Start Service” button which will pop up.
There are mainly 3 protocols in VPN connection and in order to connect via these protocol, we may have to open below ports in the server firewall.
For PPTP: 1723 TCP 47 GRE
For L2TP over IPSEC: 1701 TCP 500 UDP
For SSTP: 443 TCP
After this, we have to provide “Network Access Permission” under the 'Dial in' option after selecting the properties of the user which we are preferring to provide VPN access
After the above steps you will be able to access this server as a VPN client from another machine.
If we want to set this server as only PPTP server, then we have to set the number of ports to 0 for L2TP/IPSEC after right Clicking on the “Port” under “Routing and Remote Access”. If we want to set a L2TP/IPSEC only server, we have to set the Port number as 0 for PPTP and 1 as L@TP/IPSEC
Settings in the VPN client.
1)Go to network and sharing center and choose option set up a new connection or network
2)Choose option Connect to a workplace
3)Click on “Use My Internet Connection Option
4)In the next page provide Internet Address and Destination Name
5)After providing the user name and password, Click on Close button
6)Now Go to “Change Adapter Settings”, Right click on the newly created network tab.
7)In the Security tab, you can select type of VPN as PPTP, L2TP/IPSEC, or SSTP
8)Please select the Authentication as “Microsoft secured Password”, unless the VPN server won't recognize the authentication method used by the VPN client.
9)After that right click on Network connection and click on connect. After that you will be connected to your VPN server.