WINDOWS2003 VPN server Set up graphics and text Tutorial _ server

A lot of friends because of working relationship often mobile office, so the transmission of information, and the company information in a timely manner or tired to open a company or home computer to see movies and so on application appears very headache. This application means secure network communication over the Internet, sharing resources. and want to achieve this kind of demand, actually already had the best way to--vpn.

A VPN overview.

before setting up this VPN server, we need to know something about it, because it requires a certain network to use the VPN service.
The basis of the collateral. A VPN (virtual private network) is a virtualized private network, which is a secure tunnel formed through the Internet by two devices (computers or firewalls) with VPN-initiating connectivity. At the initiator of the tunnel (i.e. the service side), the user's private data is transmitted over the Internet after encapsulation and encryption, to the receiving end of the tunnel (i.e. the client), and the received data is securely reached to the user end after it has been unpacked and decrypted. It is self-evident that this approach can securely transmit private data on an unsecured internet to enable internet-based networking operations. The effect of VPN technology is similar to the traditional DDN line networking, the network topology is shown in the following figure.
　　

　　　　　　　　　　　　　　　
Note: The VPN service is built into the Win2K operating system, and this article is based on the configuration of the system's own VPN service.

Second, Windows 2003 VPN server installation configuration.

The VPN service is called "Routing and Remote Access" in Windows2003, and the default state is already installed. Just make the necessary configuration for this service to take effect.

The first step: Select Start-Administrative Tools-Routing and Remote Access, open the Routing and Remote Access Service window, and right-click the local computer name on the right side of the window, select Configure and Enable Routing and Remote Access, as shown in the following illustration:
　　　　　　

　　　　　　
Step two: At the next point in the Configuration wizard window that appears, go to the Service Selection window, as shown in the following figure. If your server has only one network card as described in this data, you can only choose "Custom Configuration", while the standard VPN configuration requires two network cards, if your server has two network cards, you can select the first or third item. Then click Next, complete the configuration can start VPN service.

Step three: Here is not finished, the above two steps just opened the VPN service, but also through the necessary settings to meet our actual use of the environment. To set a question about an IP address, right-click the local server name in the right tree directory, select Properties and switch to the IP tab (shown in the following image). Here is to say: If your Internet pull way for broadband routing access that is DHCP, it does not need to change, but according to the author's experience, the use of DHCP dynamic IP network speed is relatively slow, and static IP can reduce IP address resolution time, improve network speed, Its starting IP address and end IP address can be set according to the IP address segment of your region, and can be defined by itself, such as the Common LAN segment "192.168.0.X".

The fourth step: we put the dynamic domain name here. Because the general enterprise access to the Internet should have a fixed IP, so that clients can access to the server at any time and anywhere; If you are a home user using ADSL broadband access, which is generally the Internet address is not the same dynamic IP, so you need to install dynamic Domain name resolution software on the VPN server, To allow clients to find the server on the network and to dial in at any time. The author commonly used dynamic domain name analysis software is: peanut shells, can be downloaded in the www.oray.net, its installation and attention please refer to the relevant information, here is no longer detailed the third step: here is not finished, the above two steps just opened the VPN service, but also through the necessary settings to meet our actual use of the environment. To set a question about an IP address, right-click the local server name in the right tree directory, select Properties and switch to the IP tab (shown in the following image). Here is to say: If your Internet pull way for broadband routing access that is DHCP, it does not need to change, but according to the author's experience, the use of DHCP dynamic IP network speed is relatively slow, and static IP can reduce IP address resolution time, improve network speed, Its starting IP address and end IP address can be set according to the IP address segment of your region, and can be defined by itself, such as the Common LAN segment "192.168.0.X".

Third, VPN client configuration.

This end configuration is much simpler, just a dedicated connection to the VPN server. First of all, the client will also be connected to the Internet network, and then the author of the Windows 2003 client as an example shows that the other Win2K operating system settings are similar:

The first step: Right-click the properties in the Desktop Network Neighborhood graph punctuation, after you double-click the New Connection Wizard to open the wizard window, click Next, and then in the Network Connection Type window, click the second item, "Connect to my workplace network," and proceed to the next step by selecting the second item in the Network Connection window shown in the following figure. Virtual private network connection, and then name the next point for this connection.

Step two: In the VPN server Selection window, waiting for us to enter the VPN server fixed content, can be fixed IP, can also be the peanut shell software to resolve the dynamic domain name (this domain name needs in the provision of peanut shell software www.oray.net web site download); Then the available connections appear The window remains the default option that I use only, and finally, for ease of action, you can check the "Create Shortcut on desktop" option and click Finish to see the VPN Connection window as shown in the following figure. Entering a legitimate account on the VPN server is the same as the Remote Desktop feature under XP. After the connection is successful, the status bar in the lower-right corner will display an icon.
　　　

　　　　　　　
Iv. shared operations after connection.

As long as you have some experience of LAN use friends should know how to do it? One approach is to find a VPN server-side shared directory through My Network Neighborhood, or you can open a shared directory resource by entering the VPN server's fixed IP address or dynamic domain name in the browser. This is already in the same LAN with the operation is no different, nature can also directly click on a video program playback, save the download file This step took time.