Home | Site Map | Cisco How ToNet How To | Wireless |Search | Forums | Services | Donations | Careers | About Us | Contact Us|

How to configure a SSTP VPN server

RRAS, VPN, TS/RDP, Routing and remote Access.

How to configure a SSTP VPN server

Postby blin » Wed Sep 17, 2008 5:09 pm

To configure a SSTP VPN server in windows 2008, please follow these steps:

1. Configure the NAT device to redirect SSTP traffic from the external network to the Windows Server 2008 that will act as the SSTP VPN server. Specifically, redirect incoming traffic as follows:
• Source IP address: a.b.c.4 (the external interface)
• Source port: TCP 443
• Destination IP address: 192.168.10.2 (the IP address of the Routing and Remote Access server)
• Destination port: TCP 443

2. Install a computer certificate on the Windows Server 2008-based computer. Please refer to this how to for more details: How to Enable SSL on IIS 7.0 Using Self-Signed Certificates
http://www.howtonetworking.com/Internet/iis7.htm

3. Use the Server Manager tool to install the Network Policy and Access Services role together with the Routing and Remote Access Services role service on the Windows Server 2008.

4. After the Routing and Remote Access Services role service is installed, configure the Routing and Remote Access service by using the Routing and Remote Access Services Wizard.

Note: By default, the SSTP-based VPN server listens on TCP port 443. However, you can change this to another port by following these steps:

a. Start Registry Editor, and then locate the following registry subkey:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SstpSvc\Parameters\
b. In the details pane, right-click ListenerPort, and then click Modify.
c. Click Decimal, type an alternative port number such as 5000, and then click OK.
d. Exit Registry Editor, and then restart the Routing and Remote Access service.
Note If you change the ListenerPort value, you must configure the NAT device to forward TCP port 443 traffic to the new port number that you configured. For example, you must configure the NAT device to forward incoming traffic on TCP port 443 to TCP port 5000 on the SSTP-based VPN server.
How to Configure and Troubleshoot Cisco
http://www.howtocisco.com

Tablet and Smartphone Setup Guide
http://www.quicksetupguide.com
blin
Site Admin
 
Posts: 3636
Joined: Wed Dec 31, 1969 7:00 pm
Location: Chicago, USA

Return to VPN, TS and Remote Access

Your Ad Here

Who is online

Users browsing this forum: No registered users and 4 guests