This is an old revision of the document!
Setup VPN Network (Deprecated)
Client Setup
- Create a VPN network profile: Go to Control Panel > Network and Internet > Connect to a Network > Setup a connection or network > Connect to a workplace > Use my Internet connection (VPN)
- Internet address: FQDN or IP Address.
- Destination name: identifying name.
- Properties (when connecting to network):
- Options:
- Uncheck “Include Windows logon domain”.
- Select button < PPP Settings >, check “Enable software compression”.
- Networking:
- Type of VPN: Automatic.
- Uncheck “TCP/IPv6”.
- Press button < Properties > to set preferred DNS server (eg. 192.168.0.100).
* Connect to network: Go to Start > Connect To, and select the VPN connection from the list.
User Setup
- Manage users, select a user, then go to Dial-In, and allow access under “Remote Access Permission (Dial-in or VPN)”.
Server Setup
Using Windows 2003 Server
- To add the Remote Access/VPN Server role, go to Start > All Programs > Administrative Tools > Configure Your Server Wizard.
- Add the Remote Access/VPN Server role.
- On the “Routing and Remote Access Wizard”, select “Virtual Private Network VPN and NAT”.
- Select network interface that connects server to the Internet.
- Select the network containing resources needed by external client.
- Choose an IP Address assignment method: Automatically, or from a Range of Addresses.
- Select network adapter that has shared Internet access.
- Setup method of authentication. Recommendation: Do not setup RADIUS server (basically, use Routing and Remote Access to authenticate).
Source: http://articles.techrepublic.com.com/5100-10878_11-5805260.html
Using InstaGateEX Firewall
- Login to firewall as admin.
- Go to Firewall > PPTP VPN.
- Set PPTP Settings to “
Server
”. - Server Settings:
- First IP Address: 192.168.0.240
- Last IP Address: 192.168.0.250
- Require Strong Encryption Enabled
- Go to Firewall > Remote User VPN.
- Remote Users Settings:
- Allow Remote User VPN Clients:
Enabled: Yes
- IP Address Pool:
10.10.1.0 / 255.255.255.0
- Local Network:
192.168.0.0 / 255.255.255.0
- Shared Secret: < a password here > (e.g.
foundation
) - Local Identifier
- Type:
Domain Name
- Identifier: < fully qualified domain name here > (e.g.
mycompany.com
)
- Remote Identifier
- Type:
Domain Name
- Identifier: < fully qualified domain name here > (e.g.
mycompany.com
)
- Block Internet Activity:
Enabled: No