A simple instance http://www.cntele.com/luntan/dispbbs.asp that uses Win2000 to configure VPN? Boardid = 225 & rootid = 534 & id =

Source: Internet
Author: User
Tags mail account
A simple instance for configuring VPN with win2000
For VPN, Microsoft described this in the Windows 2000 Help file:
A Virtual Private Network (VPN) is an extension of a private network. It contains Internet-like shared or public network connections. Through VPN, data can be sent between two computers through a shared or public network through a simulated point-to-point dedicated link. Virtual Private Network is the act of creating and configuring a virtual private network.

To simulate a point-to-point link, compress or package data with a header that provides route information so that data can reach its end through a shared or public network. To simulate a dedicated link, data should be encrypted for the sake of confidentiality. Without a key, it is difficult to decrypt data packets captured from a shared or public network. The link between encapsulation and encryption of private data is a virtual private network (VPN) connection.

Users who work at home or on the road can use a VPN connection to establish a Remote Access Connection to the Organization server by using the infrastructure provided by the public network (such as the Internet. VPN is a point-to-point connection between a computer (VPN user) and a group server (VPN Server. The exact infrastructure of the shared or public network is irrelevant, because logically, data should be sent through a dedicated link.

Organizations can also use VPN connections to establish routing connections for offices separated by geographical locations, or connect to other organizations through public networks, such as the Internet, while maintaining secure communication. Use the VPN connection that is routed over the Internet as a dedicated WAN link.

Through remote access and route connections, organizations can use VPN connections to replace long-distance dialing or lease lines with local dialing or lease lines to Internet service providers (ISPs.

There are two types of VPN technology in Windows 2000:

1. Point-to-Point Tunneling Protocol (PPTP)
For data encryption, PPTP uses user-level Point-to-Point Protocol (PPP) authentication methods and Microsoft point-to-point encryption (MPPE ).

2. l2 Tunneling Protocol (L2TP) with IP Protocol Security (IPSec)
L2TP uses user-level PPP authentication methods and machine-Level Certificates with IPSec data encryption.

The instance we want to configure now is a connection between a remote client (Windows 2000 Pro) and a corporate headquarters VPN Server (Windows 2000 Pro). Three steps are required:
1. Configure the VPN Server to allow VPN access;
2. Configure the client's dial-up network to allow access to the Internet;
3. Configure the VPN connection of the client.

1. VPN Server Configuration
The server address is 202.100.100.100 (this address is a fictitious address ). note that the server address can be either a public address or a private network address, as long as the client can access the server after the network is dialed.

The configuration process is as follows:
1. Open "route and remote access ".
2. Right-click the server you want to configure-> "configure and enable Routing and Remote Access ".
3. Skip the welcome page and select "Virtual Private Network (VPN) server" in the "route and Remote Access Server Installation Wizard" Page. Next step.
4. Select the appropriate protocol on the "remote client protocol" page as needed. Select "TCP/IP" here and click "Next.
5. On the "Internet connection" Page, select an Internet connection to connect a remote computer. Here we select the connection address 202.100.100.100, and next.
6. On the "specify IP addresses" Page, select an appropriate address allocation scheme. For flexibility, select DHCP. If there are only a few addresses, you can specify an address range. Next step.
7. On the "manage multiple Remote Access Servers" Page, select "no, I do not want to set this server to use radius". Next.
8. Complete.

2. User Configuration
The user configuration is relatively simple, and the user is granted the permission to dial in.

3. Remote Access Policy Configuration
The remote access policy can be configured flexibly. We recommend that you configure the policy as needed.

Client Configuration:
1. Create a New dial-up connection
(Note that if the VPN Server and the client are both in the same LAN, you do not need to establish a dial-up connection. The current connection is used directly)

1. Select Start> set> network and dial-up connections, and click Create connection to start the network connection wizard.
2. Skip the welcome screen, select "dial to Internet" in the network connection type on the second page, and next step.
3. On the first page of the pop-up Internet Connection Wizard dialog box, select "manually set an Internet connection or connect through a LAN" and click "Next.
4. On the page of setting up your Internet connection in step 2, select "connect by telephone line and modem" and next.
5. On the information page of step 3rd of Internet account connection, do not select "use area code and dialing rules", add "1st" in the phone number box, and click "Next.
6. Enter the user name and password used to access the Internet by dialing on the page on Step 6 of Internet account connection information. Next step.
7. On the page of step 2 of Internet account connection information, configure your computer and change the connection name to "3rd". The default setting is also acceptable. Next step.
8. Select "no" on the "Configure Internet mail account" page in step 2, and complete the connection wizard in the next step.
9. Test the created dial-up connection until it is normal.

2. Establish a VPN connection
1. Select Start> set> network and dial-up connections, and click Create connection to start the network connection wizard.
2. Skip the welcome screen and select "connect to VPC through Internet" in the network connection type on the second page. Next step.
3. on the "public network" page, if you have established a connection with the server through the NIC in the LAN, you can select "Do not dial the initial connection". If not, then you can select the following "automatically dial this initial connection". Here we should select the connection we just established "163 ". next step.
4. On the "target address" Page, enter the host name or IP address of your VPN Server. We will enter "202.100.100.100" here. Next step.
5. on the "available connections" Page, select to allow all users to use this connection or only use this connection by themselves. for simplicity, we chose "I only use this connection ". next step.
6. Enter the appropriate connection name, for example, "connect to company VPN.

Iii. Connection
In the network and dial-up connections, click "to company VPN connection" to connect.

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.