{"id":1784,"date":"2015-12-23T05:51:42","date_gmt":"2015-12-23T05:51:42","guid":{"rendered":"http:\/\/microsoftgeek.com\/?p=1784"},"modified":"2015-12-23T05:57:33","modified_gmt":"2015-12-23T05:57:33","slug":"how-to-create-a-vpn-on-windows-server-2012-vps","status":"publish","type":"post","link":"https:\/\/microsoftgeek.com\/?p=1784","title":{"rendered":"How to Create a VPN on Windows Server 2012"},"content":{"rendered":"<h2><span class=\"mw-headline\">What is a VPN?<\/span><\/h2>\n<p>A virtual private network (VPN) is a technology for using the Internet or another intermediate network to connect computers to isolated remote computer networks that would otherwise be inaccessible. A VPN provides security so that traffic sent through the VPN connection stays isolated from other computers on the intermediate network. VPNs can connect individual users to a remote network or connect multiple networks together. For example, users may use a VPN to connect to their work computer terminal from home and access their email, files, images, etc. Through VPNs, users are able to access resources on remote networks, such as files, printers, databases, or internal websites. VPN remote users get the impression of being directly connected to the central network via a point-to-point link.<\/p>\n<p><a name=\"Requirements\"><\/a><\/p>\n<h2><span class=\"mw-headline\">Requirements<\/span><\/h2>\n<p>For this VPN configuration you require the following.<\/p>\n<p><b>Windows 2012 Standard<\/b><\/p>\n<p><b>Minimum 2 IP addresses (must be in the same subnet)<\/b><\/p>\n<p><a name=\"Installation\"><\/a><\/p>\n<h2><span class=\"mw-headline\">Installation<\/span><\/h2>\n<div>\n<ul>\n<li>Install the\u00a0<b>Remote Access\u00a0<\/b>Role Through<strong> Server Manager<\/strong> or <strong>PowerShell<\/strong><\/li>\n<li><img decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/6\/6b\/AddRole.png\" alt=\"Image:AddRole.png\" \/><\/li>\n<li>\n<table>\n<tbody>\n<tr>\n<td class=\"article_td\">\n<div class=\"fef-1\">\n<div class=\"faq-ent-data\">\n<div class=\"txt\">\n<p>Select <strong>Next<\/strong><\/p>\n<ul>\n<li>Select<strong> DirectAccess<\/strong> and <strong>VPN (RAS)<\/strong> under <strong>Role Services<\/strong><\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:RoleServices.png\" href=\"http:\/\/myhosting.com\/kb\/Image:RoleServices.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/7\/76\/RoleServices.png\" alt=\"Image:RoleServices.png\" width=\"624\" height=\"513\" border=\"0\" \/><\/a><\/p>\n<p>Select <strong>Next<\/strong><\/p>\n<ul>\n<li>Once the Role installation completes you can use the\u00a0<b>Getting Started Wizard<\/b>\u00a0to complete the VPN configuration.<\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:RemoteConfig.png\" href=\"http:\/\/myhosting.com\/kb\/Image:RemoteConfig.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/f\/f5\/RemoteConfig.png\" alt=\"Image:RemoteConfig.png\" width=\"624\" height=\"423\" border=\"0\" \/><\/a><\/p>\n<ul>\n<li>Select\u00a0<b>Deploy VPN Only<\/b><\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:VPNOnly.png\" href=\"http:\/\/myhosting.com\/kb\/Image:VPNOnly.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/1\/1d\/VPNOnly.png\" alt=\"Image:VPNOnly.png\" width=\"624\" height=\"514\" border=\"0\" \/><\/a><\/p>\n<p>This opens the <strong>MMC for Routing and Remote Access<\/strong><\/p>\n<ul>\n<li>Right click the server and select\u00a0<b>Configure and Enable Routing and Remote Access<\/b><\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:ConfigureVPN.png\" href=\"http:\/\/myhosting.com\/kb\/Image:ConfigureVPN.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/4\/4f\/ConfigureVPN.png\" alt=\"Image:ConfigureVPN.png\" width=\"624\" height=\"251\" border=\"0\" \/><\/a><\/p>\n<p>This launches the <strong>Setup Wizard<\/strong><\/p>\n<ul>\n<li>Since their is only one network interface you will need to choose <strong>Custom Configuration<\/strong><\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:CustomConfig.png\" href=\"http:\/\/myhosting.com\/kb\/Image:CustomConfig.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/9\/9e\/CustomConfig.png\" alt=\"Image:CustomConfig.png\" width=\"514\" height=\"430\" border=\"0\" \/><\/a><\/p>\n<p>Select <strong>Next<\/strong><\/p>\n<ul>\n<li>Check VPN Access<\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:SelectVPN.png\" href=\"http:\/\/myhosting.com\/kb\/Image:SelectVPN.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/8\/8e\/SelectVPN.png\" alt=\"Image:SelectVPN.png\" width=\"514\" height=\"430\" border=\"0\" \/><\/a><\/p>\n<p>Select <strong>Next<\/strong><\/p>\n<ul>\n<li>Select <strong>Finish<\/strong><\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:AllDone.png\" href=\"http:\/\/myhosting.com\/kb\/Image:AllDone.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/1\/16\/AllDone.png\" alt=\"Image:AllDone.png\" width=\"514\" height=\"430\" border=\"0\" \/><\/a><\/p>\n<p><a name=\"Firewall_Settings\"><\/a><\/p>\n<h2><span class=\"mw-headline\">Firewall Settings<\/span><\/h2>\n<p>Now that your VPN installation is complete you will need to modify your Windows Firewall to allow the VPN traffic You will need to open the following ports.<\/p>\n<ul>\n<li>For PPTP: 1723 TCP and Protocol 47 GRE (also known as PPTP Pass-through<\/li>\n<li>For L2TP over IPSEC: 1701 TCP and 500 UDP<\/li>\n<li>For SSTP: 443 TCP<\/li>\n<\/ul>\n<p><a name=\"Enabling_Users_on_VPN\"><\/a><\/p>\n<h2><span class=\"mw-headline\">Enabling Users on VPN<\/span><\/h2>\n<p>You will need to enable users to\u00a0<b>Dial-in<\/b>\u00a0On a standalone server (default) this can be done in the <strong>Computer Management MMC<\/strong>, if you are in a domain environment you can do this in the User properties of Active Directory.<\/p>\n<p><a class=\"image\" title=\"Image:Dial-in.png\" href=\"http:\/\/myhosting.com\/kb\/Image:Dial-in.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/9\/93\/Dial-in.png\" alt=\"Image:Dial-in.png\" width=\"425\" height=\"527\" border=\"0\" \/><\/a><\/p>\n<p><a name=\"Defining_a_Static_Address_.27pool.27\"><\/a><\/p>\n<h2><span class=\"mw-headline\">Defining a Static Address &#8216;pool&#8217;<\/span><\/h2>\n<p>Since you don\u2019t have a DHCP Server in our VPS Environment you have to add a static address pool.<\/p>\n<ul>\n<li>Right click on the Remote Access server and select\u00a0<b>Properties<\/b><\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:RemoteProp.png\" href=\"http:\/\/myhosting.com\/kb\/Image:RemoteProp.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/2\/20\/RemoteProp.png\" alt=\"Image:RemoteProp.png\" width=\"624\" height=\"289\" border=\"0\" \/><\/a><\/p>\n<ul>\n<li>Select the <strong>IPv4<\/strong> tab and select Static address pool<\/li>\n<\/ul>\n<p><a class=\"image\" title=\"Image:IPv4.png\" href=\"http:\/\/myhosting.com\/kb\/Image:IPv4.png\"><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/myhosting.com\/kb\/images\/4\/4b\/IPv4.png\" alt=\"Image:IPv4.png\" width=\"414\" height=\"583\" border=\"0\" \/><\/a><\/p>\n<ul>\n<li>Add your IP range eg. 192.168.1.100 &#8211; 192.168.1.101 And define the number of addresses to 2<\/li>\n<\/ul>\n<div><\/div>\n<div>\n<p>&nbsp;<\/p>\n<h2><span class=\"mw-headline\">Printer and File Sharing through VPN<\/span><\/h2>\n<p>You may run into some issues with printer and file sharing you can do the following to resolve this issue.<\/p>\n<p>&nbsp;<\/p>\n<ul>\n<li>You can use\u00a0<b>gpedit.msc<\/b>\u00a0to change the settings.<\/li>\n<li><b>Computer Configuration<\/b>-&gt;<b>Windows Settings<\/b>-&gt;<b>Security Settings<\/b>-&gt;<b>Network List Manager Policies<\/b>-&gt;\u00a0<b>VPN Connection<\/b><\/li>\n<li>Change the location type to\u00a0<b>Private<\/b><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p><b><img decoding=\"async\" src=\"http:\/\/social.technet.microsoft.com\/Forums\/getfile\/170129\" alt=\"\" \/><\/b><\/p>\n<\/div>\n<p>&nbsp;<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/li>\n<\/ul>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>What is a VPN? A virtual private network (VPN) is a technology for using the Internet or another intermediate network to connect computers to isolated remote computer networks that would otherwise be inaccessible. A VPN provides security so that traffic sent through the VPN connection stays isolated from other computers on the intermediate network. VPNs [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16,48],"tags":[],"class_list":["post-1784","post","type-post","status-publish","format-standard","hentry","category-vpn","category-microsoft-windows-server-2012"],"_links":{"self":[{"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/posts\/1784","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1784"}],"version-history":[{"count":2,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/posts\/1784\/revisions"}],"predecessor-version":[{"id":1786,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/posts\/1784\/revisions\/1786"}],"wp:attachment":[{"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1784"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1784"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1784"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}