The Windows Remote access server allows VPN clients to be identified and transparently connected to the internal network as if they were connected directly to the network. This enables users to work remotely in a secure manner. This article mainly describes some common problems that should be addressed on the server side when checking for VPN connection failures.
When a VPN user connects, there are several aspects of the remote access server that are prone to problems. The VPN server must be properly set up to allow remote access. If the user encounters a connection problem, verify that the client's settings are correct and that the end user has the ability to connect to the server. You can follow the steps below:
1. Verify that this server has enabled remote access functionality.
Follow the steps below:
Check the Routing and Remote Access plugin--> Properties--> general, and verify that the Remote Access Server dialog box is selected.
2. Verify the identification provider.
Check the Routing and Remote Access plugin--> Properties--> Security and verify that RADIUS or Windows identity is selected.
3. Verify the method of identification.
Check the Routing and Remote Access plugin--> Properties--> Security and select the certificate mechanism. This is usually some form of challenge Handshake Authentication Protocol (CHAP). This server also has other settings that must be properly configured, including IP routing, DHCP, and PPP IP settings. The verification steps for these settings are as follows:
1.) Verify that this server has enabled the ability to allow IP routing.
Take the following steps:
View the Routing and Remote Access plugin--> Properties-->ip label and verify that the server is set to allow IP routing. Also verify that the server is set to allow ip-based remote access and require dial-up connections.
2.) Verify that the server has been set to an assigned IP address.
This step can be done through a batch of static addresses or DHCP. Check the Routing and Remote Access plugin--> Properties-->ip tag, however click DHCP or static address pool. If you click on the address pool, you must set up a large number of addresses.
This is the basic setup for the Windows VPN server. There are also many other features related to the VPN session, such as identity and encryption. These features can also cause failures. The best approach is to try to make the user connect and identify a simple session. Cancels all connections except the standard connection; You can then add additional security features to this session.