Set up a VPN Server on Windows Server 2012. This video tutorial shows you how to install a VPN Server on Windows Server 2012.
This video covers a VPN server for a small Business environment or for a hosted server scenario. It also covers Setting up the firewall and Client computer for a successful connection to the server.
Set up a VPN Server on Windows Server 2012:
1. Open the Server Manager and select Add rolls and features.
2. In “Select installation type” window check Role based or feature based installation. Next.
3. Select the local server in the Select destination server window. Next.
4. Now Select Remote access Role, and click on Add features button. Next.
5. No more features so Im clicking Next in the “Select features” window.
6. Next in the Remote Access window.
7. Select Direct Access and VPN (RAS) under Role Services Window.Next.
8. Leave everything default in the Select role services Window. Next.
9. Click Install in the Confirm Installation selection Window. Then close once it finish the installation.
10. You will now see a Remote access on the left pain, Click on it.
11. Now click on More link, under SERVERS.
12. Click on the Open Getting Started Wizard to complete the VPN configuration.
13. Select Deploy VPN Only
14. This opens the MMC for Routing and Remote Access
15. Right click the server and select Configure and Enable Routing and Remote Access
16. This launches the Setup Wizard
17. Since their is only one network interface you will need to choose Custom Configuration. Next
18. Check VPN Access. Next
19. Finish the Wizard.
20. You will need to enable users to Dial-in On a standalone server (default) this can be done in the Computer Management MMC,
if you are in a domain environment you can do this in the User properties of Active Directory.
Define a Static Address ‘pool’
Since you don’t have a DHCP Server in our VPS Environment you have to add a static address pool.
1. Right click on the Remote Access server and select Properties
2. Select the IPv4 tab and select Static address pool
Now that your VPN installation is complete you will need to modify your Windows Firewall to allow the VPN traffic You will need to open the following ports.
- For PPTP: 1723 TCP and Protocol 47 GRE (also known as PPTP Pass-through
- For L2TP over IPSEC: 1701 TCP and 500 UDP
- For SSTP: 443 TCP
- Launch Windows Firewall
- Click Allow a program of feature through Windows Firewall
- Check Routing and Remote Desktop
- Click OK
Configure the Client Computer
1. Click Start button –> Control Panel -> Network and Internet -> Network and Share Center –> Click “Set up a new connection or network” under the “Change your networking settings”.
2.Select ” Connect to a workplace” and click Next.
3. Use my internet connection (VPN) –> Type the IP address and destination name in the box –>
4. Check ‘Don’t connect now; just set it up so I can connect later’ and click Next
5. Now we need to Configure the VPN Connection so right click Properties.
6. Select the Security Tab. in the Data encription drop down Select “Optional encryption (Connect even with no encryption)” Also Check Allow these protocols and place a check on Microsoft CHAP version 2 Click OK.
7. Now Enter your VPN username and password to Connect to the VPN server.