Illustration of VPN Network Construction

Source: Internet
Author: User
1. About VPN

(1) Virtual Private Network (VPN) is an extension of a private network. It contains Internet-like shared or public network connections. Through VPN, data can be sent between two computers through a shared or public network through a simulated point-to-point dedicated link.

(2) If it is more common, VPN is actually a "line in the line", type on the city Avenue "bus line", the difference is that, A "line" composed of VPN does not exist physically, but is simulated by technical means, that is, "virtual. However, this virtual private network technology can establish a logical private "channel" for two computers on a public line, which is well confidential and not confidential, this allows both parties to establish a free and secure point-to-point connection. Therefore, it is widely concerned by network administrators.

(3) In this section, the VPN Server uses Win2k; the client uses Win98.

2. Configure the VPN Server

(1) Not Configured: the VPN in Win2k is included in "Routing and Remote Access Service. After your Win2k server is installed, it will automatically exist! However, when you open the "Routing and Remote Access" item in "Administrative Tools" to enter the main window, select "server quasi-status" in the "Tree" column on the left ", you can see from the right that its "status" is in "stopped (not configured.

(2) Start configuration: To enable Win2k computer to accept the client's VPN dial-in, you must configure the VPN Server. Select "server" (server name) in the left-side window, right-click it, and select "configure and enable Routing and Remote Access ".

(3) If this server has been configured before and needs to be restarted, right-click on "server" (server name) and select "Disable Routing and Remote Access ", you can stop this service to reconfigure it!

(4) After Entering the Configuration Wizard, in "public settings", click "Virtual Private Network (VPN) server" to allow users to access the public network (such as the Internet) to access this server.

(5) In the "remote client protocol" dialog box, generally, if at least TCP/IP is already available, you just need to click "yes, all available protocols are listed and "Next" is required.

(6) The system will ask you to select another Internet connection used by the server, select the connection method (for example, a established dial-up connection or a connection through the specified Nic) in the list and then "Next ".

(7) When answering the question "How do you want to assign IP addresses to remote clients", unless you have installed the DHCP server on the server, otherwise, select "from a specified IP address range" (recommended ).

(8) then enter the starting IP address you want to assign to the client as prompted, and "add" to the list, for example, "192.168.0.80 ~ 192.168.0.90 ". (Note that the IP address range must be in the same network segment as the IP address of the server, that is, the "192.168.0" section must be the same !)

(9) Finally, select "No, I don't want to set this server to use radius" to complete the final setting. At this time, a small window will automatically appear on the screen that is opening an account "Routing and Remote Access Service". When it disappears, open "service" in "Administrative Tools ", you can see that the "Routing and Remote Access" (route and remote access) item "is automatically" in the "started" status!

3. Grant the user the permission to dial in

(1) by default, no user is allowed to dial in to the server.

(2) to grant a user the permission to dial in to this server, open the User Manager (in "Computer Management" or "Active Directory users and computers") in the management tool ), right-click the desired user and choose ,? Quot; Attribute ".

(3) Select "dial in" in the user attribute window, click "Allow access", and then "OK" to grant the user the permission to dial in.

4. VPN connection via LAN

(1) enter the Win98 computer. to connect to the VPN Server, you must first install the "virtual private network" service. In the "network" of the control panel, enter "communication" to find this option and add it. After the installation is complete, restart the computer as prompted.

(2) After restarting, the "Microsoft Virtual Private Network Adapter" is available in the "network" on the control panel, indicating that the VPN service has been installed successfully!

(3) you also need to establish a connection to the VPN Server. First enter my computer? Quot; dial-up network ", double-click" create connection ", and then enter the name of the Peer computer" Enter the connection name, for example, "VPN connection in LAN ", do not forget to select "Microsoft VPN adapter" under "select device! "Next ".

(4) "Enter the name or IP address of the VPN Server", and enter the name or IP address of the Win2k server in the text box, for example, "192.168.0.1 ", follow the prompts to create a successful creation!

(5) In "Dial-Up Network", double-click the "VPN connection in LAN" icon created just now, and enter the corresponding user name (requires the permission to dial into the server) and password, then press "Connect.

(6) If the connection to the VPN Server is successful, the icons of two computers will appear in the lower right corner of the taskbar, and the connection status window will appear after you double-click it.

5. VPN connection over the Internet

(1) first, make sure that the server is connected to the Internet and use ipconfg to determine its valid IP address on the Internet.

(2) On the Win98 client side, refer to the relevant content in this section to establish a new VPN connection, enter the valid IP address of the server on the Internet in the corresponding place, and then dial the client to the Internet, double-click the created VPN connection, enter the user name and password, and click "Connect.

(3) After the connection is successful, two icons are displayed on the right of the taskbar of both parties. One is the connection to intenet, and the other is the connection to VPN!

(4) after both parties establish a VPN connection over the Internet, it is equivalent to establishing a virtual channel dedicated to both parties on the Internet, mutual access can be made between the two sides in the network, that is, it is equivalent to forming another local area network! This network is dedicated to both parties and provides excellent confidentiality.

6. VPN established successfullyAfter the VPN is successfully established, you can use IP addresses or "Network neighbors" for mutual access. Of course, you can use the hardware and software resources shared by the other party.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.