{"id":1645,"date":"2014-03-10T09:46:51","date_gmt":"2014-03-10T14:46:51","guid":{"rendered":"http:\/\/www.poweradmin.com\/blog\/?p=1645"},"modified":"2015-04-24T16:40:20","modified_gmt":"2015-04-24T21:40:20","slug":"configuring-vpn-connections-on-a-windows-server","status":"publish","type":"post","link":"https:\/\/www.poweradmin.com\/blog\/configuring-vpn-connections-on-a-windows-server\/","title":{"rendered":"Configuring VPN connections on a Windows Server"},"content":{"rendered":"<p><iframe loading=\"lazy\" src=\"\/\/embed.gettyimages.com\/embed\/136008804?et=u0hP54xvlkmTfZslaNleCw&amp;sig=5EKixQ8FlShHtomyjiD5CrOnepIKQ80rM-YOGjLXQK8=\" width=\"414\" height=\"483\" frameborder=\"0\" scrolling=\"no\" align=\"right\"><\/iframe><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">With the expansion of the Internet and the development of new technologies, VPN or Virtual Private Connections has become an important factor in all enterprises. This technology allows companies to interconnect different networks that are geographically separated to provide one massive intranet. Another important aspect is that VPN connections allow remote users to access internal networks using a secure channel. With these ideas in mind we can begin by saying VPN connections offer reliable, secure and fast communication channels. <\/span><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">One slight inconvenience can come from internet connection bandwidth, but this should not be a problem since internet connections have evolved to high speeds. In this article I will show you how to configure VPN connections on a Windows Server 2008. Note that companies usually prefer dedicated equipment for establishing such connections, but this technology is also available with Windows Server editions.<\/span><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">To successfully configure a VPN server we will need to make sure that some requirements are met. First, ensure the server is using two network interfaces, one connected to the internal network and the other one connected to the Internet. The public interface will be used to accept incoming VPN authentication requests while the internal component will forward packets using the external network adapter to the internet, thus creating a flow between these two sides. We will need to add the <em>Network Policy and Access Services<\/em> role to our Windows Server 2008 machine:<\/span><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1655\" title=\"Select Server Roles Wizard\" src=\"\/blog\/wp-content\/uploads\/2014\/03\/select-server-roles-wizard1.png\" alt=\"Select Server Roles Wizard\" width=\"780\" height=\"586\" srcset=\"https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/select-server-roles-wizard1.png 780w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/select-server-roles-wizard1-300x225.png 300w\" sizes=\"auto, (max-width: 780px) 100vw, 780px\"><\/span><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">Once the server role has been added, open Server Manager Console, right click on <em>Roles\/Network Policy and Access Services\/Routing and Remote Access<\/em> and select <em>Configure and Enable Routing and Remote Access:<\/em><\/span><\/span><\/span><\/p>\n<p><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\"><a href=\"\/blog\/wp-content\/uploads\/2014\/03\/server-manager-routing-remote-access.png\"><span style=\"color: #444444;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1653\" title=\"Server Manager Routing Remote Access\" src=\"\/blog\/wp-content\/uploads\/2014\/03\/server-manager-routing-remote-access.png\" alt=\"Server Manager Routing Remote Access\" width=\"1025\" height=\"470\" srcset=\"https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/server-manager-routing-remote-access.png 1025w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/server-manager-routing-remote-access-300x137.png 300w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/server-manager-routing-remote-access-1024x469.png 1024w\" sizes=\"auto, (max-width: 1025px) 100vw, 1025px\"><\/span><\/a><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">Read the welcome screen, then proceed to the next step by clicking <em>Next<\/em>. In the next section select <em>Routing Access (dial-up or VPN)<\/em>. There is a short description underneath this section saying that you can allow remote clients to connect to this server through either a <em>dial-up connection or a secure virtual private network (VPN) Internet connection:<\/em><\/span><\/span><\/span><\/p>\n<p><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\"><a href=\"\/blog\/wp-content\/uploads\/2014\/03\/routing-remote-access-server-setup-wizard.jpg\"><span style=\"color: #444444;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1651\" title=\"Routing Remote Access Server Setup Wizard\" src=\"\/blog\/wp-content\/uploads\/2014\/03\/routing-remote-access-server-setup-wizard.jpg\" alt=\"Routing Remote Access Server Setup Wizard\" width=\"502\" height=\"414\" srcset=\"https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/routing-remote-access-server-setup-wizard.jpg 502w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/routing-remote-access-server-setup-wizard-300x247.jpg 300w\" sizes=\"auto, (max-width: 502px) 100vw, 502px\"><\/span><\/a><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">Since we will be using a VPN connection make sure to check the button from the following section and then click <em>Next:<\/em><\/span><\/span><\/span><\/p>\n<p><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\"><a href=\"\/blog\/wp-content\/uploads\/2014\/03\/remote-access-vpn.jpg\"><span style=\"color: #444444;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1650\" title=\"Remote Access VPN\" src=\"\/blog\/wp-content\/uploads\/2014\/03\/remote-access-vpn.jpg\" alt=\"Remote Access VPN\" width=\"502\" height=\"414\" srcset=\"https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/remote-access-vpn.jpg 502w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/remote-access-vpn-300x247.jpg 300w\" sizes=\"auto, (max-width: 502px) 100vw, 502px\"><\/span><\/a><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">You\u2019ll need to select what network interface connects the server to the Internet. This interface will be used to receive VPN connection requests and packets will be forwarded from and to this hardware device. When configuring a VPN connection, you\u2019ll also have to specify how the remote users will receive their IP configuration. If your network is using a DHCP server, select the first option. Otherwise select the second one and configure an IP scope manually:<\/span><\/span><\/span><\/p>\n<p><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\"><a href=\"\/blog\/wp-content\/uploads\/2014\/03\/automatic-ip-address-assignment.jpg\"><span style=\"color: #444444;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1647\" title=\"Automatic IP Address Assignment\" src=\"\/blog\/wp-content\/uploads\/2014\/03\/automatic-ip-address-assignment.jpg\" alt=\"Automatic IP Address Assignment\" width=\"501\" height=\"414\" srcset=\"https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/automatic-ip-address-assignment.jpg 501w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/automatic-ip-address-assignment-300x247.jpg 300w\" sizes=\"auto, (max-width: 501px) 100vw, 501px\"><\/span><\/a><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">Select the option that suits you best and proceed with the installation. Once the wizard is complete open the <em>Network Policy and Access Services <\/em> console. In the Ports section you will be able to add or remove connection ports. These are used by each VPN client to establish connections to our Windows Server. By default, Windows VPN Servers create 128 ports for each connection type (SSTP, L2TP, IKEV2, PPPOE and PPTP). If you right click on the <em>Ports<\/em> section and select <em>Properties<\/em>, you can configure ports for each connection type:<\/span><\/span><\/span><\/p>\n<p><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\"><a href=\"\/blog\/wp-content\/uploads\/2014\/03\/configure-ports-and-properties.jpg\"><span style=\"color: #444444;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1648\" title=\"Configure Ports And Properties\" src=\"\/blog\/wp-content\/uploads\/2014\/03\/configure-ports-and-properties.jpg\" alt=\"Configure Ports And Properties\" width=\"401\" height=\"444\" srcset=\"https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/configure-ports-and-properties.jpg 401w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/configure-ports-and-properties-270x300.jpg 270w\" sizes=\"auto, (max-width: 401px) 100vw, 401px\"><\/span><\/a><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">What VPN technology you choose to use depends on the network requirements, the local infrastructure, available equipment and internet connection bandwidth. All of these things need consideration when choosing a VPN connection type.<\/span><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">Navigate to <em>IPv4\/General<\/em> menu and double click the network interface used to accept incoming VPN connection requests:<\/span><\/span><\/span><\/p>\n<p><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\"><a href=\"\/blog\/wp-content\/uploads\/2014\/03\/vpn-connection-type-ipv4.jpg\"><span style=\"color: #444444;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1654\" title=\"VPN Connection Type IPv4\" src=\"\/blog\/wp-content\/uploads\/2014\/03\/vpn-connection-type-ipv4.jpg\" alt=\"VPN Connection Type IPv4\" width=\"401\" height=\"464\" srcset=\"https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/vpn-connection-type-ipv4.jpg 401w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/vpn-connection-type-ipv4-259x300.jpg 259w\" sizes=\"auto, (max-width: 401px) 100vw, 401px\"><\/span><\/a><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">From this section we can configure inbound and outbound filters. The VPN server will automatically configure inbound filters for accepting VPN requests:<\/span><\/span><\/span><\/p>\n<p><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\"><a href=\"\/blog\/wp-content\/uploads\/2014\/03\/inbound-outbound-filters-vpn.jpg\"><span style=\"color: #444444;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1649\" title=\"Inbound Outbound Filters VPN\" src=\"\/blog\/wp-content\/uploads\/2014\/03\/inbound-outbound-filters-vpn.jpg\" alt=\"Inbound Outbound Filters VPN\" width=\"481\" height=\"376\" srcset=\"https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/inbound-outbound-filters-vpn.jpg 481w, https:\/\/www.poweradmin.com\/blog\/wp-content\/uploads\/2014\/03\/inbound-outbound-filters-vpn-300x234.jpg 300w\" sizes=\"auto, (max-width: 481px) 100vw, 481px\"><\/span><\/a><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">By filtering incoming and outgoing requests you can ensure that only computers and clients that have permissions are allowed through the VPN server. From the same console you can view active VPN clients and configure Access Logging &amp; Policies. The console is easy to use and offers all the important features for your VPN server.<\/span><\/span><\/span><\/p>\n<p><span style=\"color: #444444;\"><span style=\"font-size: 16px;\"><span style=\"font-family: arial,helvetica,sans-serif;\">That\u2019s it for this article folks, hope you\u2019ve enjoyed it. For any questions feel free to access our comments section and I will respond as soon as possible. Don\u2019t forget to check out other articles from our blog and stay tuned for following posts. Wish you all the best and have a wonderful day.<\/span><\/span><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>With the expansion of the Internet and the development of new technologies, VPN or Virtual Private Connections has become an important factor in all enterprises. This technology allows companies to interconnect different networks that are geographically separated to provide one massive intranet. Another important aspect is that VPN connections allow remote users to access internal [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":1664,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4,5,13,9,8],"tags":[],"class_list":["post-1645","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general-it","category-how-to","category-pc-security","category-technical","category-windows"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/posts\/1645","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/comments?post=1645"}],"version-history":[{"count":5,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/posts\/1645\/revisions"}],"predecessor-version":[{"id":3532,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/posts\/1645\/revisions\/3532"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/media\/1664"}],"wp:attachment":[{"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/media?parent=1645"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/categories?post=1645"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/tags?post=1645"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}