Figure 1
To configure the Windows VPN server, you need to create an incoming connection. This computer will be the VPN server or host. Also, need to specify the user you want them to be able to make a VPN connection. Follow these steps to create incoming connections:
Figure 2
Figure 3
At this point, access the incoming connection properties page that has just been created and define the IP address range for VPN clients:
Figure 4
Windows will automatically allow VPN connections through Windows Firewall when you configure incoming incoming on the host computer. However, if you use a third-party firewall on this computer, you need to make sure it allows this VPN traffic. You may have to manually enter port numbers 47 and 1723.
To enable VPN connections for the host computer from the Internet, you must configure the router to forward them to a Windows computer that accepts incoming connections. Specify the host machine by entering its local IP address. So, before setting up port forwarding, you should make sure the IP address is not changed.
Start by logging into the router's web console. Then go to Network or DHCP settings and see if you can maintain an IP address for the computer so that it doesn't change. This is called DHCP reservation or Static DHCP. Some routers do not have this feature. In that case, it is necessary to assign the computer a static IP in the TCP / IP settings of the network connection in Windows.
Once you have specified the IP address, find the virtual server or set up port forwarding in the router's web console. Then create port 1723 forwarding entry to the computer's local IP address, as shown in Figure 5. Don't forget to save the changes!
Figure 5
If an Internet connection uses a dynamic IP address, you should register and configure a dynamic DNS service. The reason is because, when configuring remote clients, you must enter the Internet IP address of the host machine host. This will cause problems if the IP changes. However, you can register for a free service, such as from No-IP and enter account information into the router so that it updates the hostname with your IP address. You will then have a hostname (such as yourname.no-ip.org) to import to the remote client, which will always point to the current Internet IP address of the host machine.
Now everything on the server side has been configured. Next we need to set up the clients.
Now that we have set up the server, we need to configure the clients that want to remotely access the VPN connection, called VPN clients. Here's how to do it in Windows Vista and Windows 7:
Figure 6
Figure 7
By default Windows will assign the connection type to Public Network, which is a connection type that limits sharing. So if you want to change this, you need to open the Network and Sharing Center, click Customize (Windows Vista) or link Public network under the connection name (Windows 7). Then on the window that appears, select Work Network .
Here's how to create an outgoing VPN connection in Windows XP:
By default, all Internet traffic on the VPN client will be transmitted over VPN instead of the local Internet that they connect to. This is a great technique if we use a public connection, like a certain access port in a hotel or a Wi-Fi access point, this time it will make browsing more private. . However, if these computers are on a trusted network, like at home or remote offices, this method can waste bandwidth. So we can restrict traffic through a VPN connection:
Figure 8
Now the VPN client will use the local Internet connection when browsing. It will only use the VPN connection when the server or IP address cannot connect via the Internet, such as when accessing shared files named network hosting VPN.
In Windows XP, you can connect and disconnect by opening the Network Connections window and right-clicking on the VPN connection. In Windows Vista, you can click the network icon in the system tray, click Connect to and select the connection. In Windows 7, click the network icon in the system tray and select the VPN connection.
Once connected, you can access shared resources on the VPN hosting network. Note that you may have to access shared folders manually (such as: the computer's IP address or file: // computer_name / ) instead of browsing in My Network Places or Network.