There are many software and hardware solutions out there that allow VPN connections in to your home network. Some of these solutions are free and lightweight, however (perhaps foolishly), I have just never trusted them as they usually go via a third party service.
I have always wanted to have proper VPN access to my home network but have just never got around to it for one reason or another, however, I have a machine doing nothing here and I thought it was about time... and it is seriously so easy to do, I wish I had done it sooner!
With this guide, you should be able to get a full Windows VPN tunnel set up in less than 5 minutes!
For Windows Server 2003 Server go to 2b.
For Windows Server 2008, read below.
[ ] Network Policy and Access Services [NPAS]
[ ] Network Policy Server [NPAS-Policy-Server]
[ ] Routing and Remote Access Services [NPAS-RRAS-Services]
[ ] Remote Access Service [NPAS-RRAS]
[ ] Network Policy Server [NPAS-Policy-Server]
[ ] Routing and Remote Access Services [NPAS-RRAS-Services]
[ ] Remote Access Service [NPAS-RRAS]
2 a). Next, Go to computer Management and expand Services and Applications.
2 b). (For Windows Server 2003) Go to "Administration tools" > "Routing and Remote Access"
2 c). Right click and choose "Configure and Enable Routing and Remote Access"
3. The predefined VPN templates require two network cards and if you only have one, it will come up with an error. I am unsure why as it is not actually required. To continue, choose the "Custom Configuration" option.
4. Select the "VPN access" option.
5. Confirm your selection and finish the wizard6. By default, Routing and Remote Access will pass DHCP requests through, however, I have encountered mixed results through this option (I think due to gateway settings), and prefer selecting the "Static Address Pool" option which I also think is a lot faster at connecting.
You can configure this by right clicking on the computer (where you clicked above in stage 2c) but this time choose properties, and go to the IP tab.
Assign as many IPs as concurrent VPN connections you want - make sure they are working IPs within your current subnet. If they are covered by your current router (or DHCP server) and you are not able to setup exclusions, you can simply make DHCP reservations for fictional MAC addresses and that will keep them unregistered by DHCP clients.
7. Go to Computer Management > Users and groups and create a new user. Make sure that you allow remote access in the "Dial in" tab.
8. At your firewall/router, make sure that UDP port 500 (IPsec) and TCP port 1723 (PPTP) are forwarded to the server.
And that's it! Done!
If you are not sure how to create a VPN connection to the server in Windows, follow this guide (For Windows 7/2008):
Go to "Network and Sharing center" and choose "Setup a new connection or network" option.
Simply type the ip address of your server, and the username and password that you set up (leave domain blank) and you are done!
Under the quick connections menu on the taskbar, you will be able to easily connect to the VPN whenever you want (and when outgoing ports are not blocked!)
I did a quick speed test when out and about and was able to reach a download speed of my home upload speed! It works very well and is satisfying to see my own IP address on IP checking sites!
FYI - I love everything I have seen about DirectAccess - it is a far superior solution, but I simply do not have the infrastructure at home to support it. Hopefully in the future, I will be able to deploy it and write a similar guide (although I think it will be more than 5 minutes work!)
*Windows Server 2008 Web edition is not supported, It requires the Remote Access role to be installed.
Thanks for this tutorial! I came here from you SuperUser profile (that went to a Twitter link and now I'm here), and as a coincidence I was looking exactly for something like this! Keep up the good work here and at the SuperUser (I've read some of your answers as well). Thanks!
ReplyDelete@Anonymous - Whoever you are, cool! Glad I could help you! Hope your VPN is working well!
ReplyDeleteThis comment has been removed by a blog administrator.
ReplyDeleteI also tried this like Anonymous did and it work out really great. Thank you very much.
ReplyDeletehi This was very helpfull!
ReplyDeletea month after i folow your how to i get 20171 error.
any point were to look for help or an advice :)
Thanks any way for the Guide
Is there a way to change the DNS of VPN connection? I usually use Google's public DNS.
ReplyDeleteWow, this is so helpful, and thanks so much, William. Your step 6) above directly helped resolve the problem I'd been having for weeks:
ReplyDeleteIt instantly works for me if I selected "Static Address Pool" option as you suggested, DHCP options didn't work for me for unknown reason when I tried to VPN from the internet.
Thanks!!
ReplyDeleteI have a windows 2008 r2 server, motorola nvg510 router from ATT (ADSL 6Mbps up and 540Kbps down)
ReplyDelete- no firewall
- AD, DC, DNS and DHCP configured
- 2 NICs
- Router has private IP addresses for intranet and 5 public IP addresses for internet
Objective: Setup VPN services on this server
Help:
1. Best setup for router to pass VPN services
2. Best setup for server VPN services using one or two NICs
Thanks
I am wondering can you setup UPN to ping remote server using NetBios (computer name)? Would be there some additional configurations?
ReplyDeleteIf yes, is it possible to enlighten us.
Steps explained on gtax.co.uk
ReplyDeleteThanks for the response. But somehow I cannot open the site using Internet Exlore.
ReplyDeleteAny Suggestion.
that is simple pptp vpn ,., but that did not access to internet ,..
ReplyDeletefor internet access ,, make first (DHCP , SERVER) .(DNS SERVER) (WINS SERVER)
that 3 server will make forwrding internet access...
i have see alot of tuterials but not shoing next optstion.. how to configure DHCP . DNS OR WINS SERVER ...
HAHHAHAHHAHHHHHAHAHHAH
thank you for taking the time to do this tutorial. it helped me alot.
ReplyDeleteThanks, your tutorial is very helpful.
ReplyDeleteI'd like to thank you for the efforts you have put in writing this website. I really hope to check out the same high-grade content from you in the future as well. In truth, your creative writing abilities has motivated me to get my own website now ;)
ReplyDeleteFeel free to visit my site :: wealthwayonline.com
I'm really enjoying the design and layout of your site. It's
ReplyDeletea very easy on the eyes which makes it much more enjoyable for me to come here and visit more often.
Did you hire out a developer to create your theme?
Superb work!
Feel free to visit my web blog - Air Jordan
bookmarked!!, I love your blog!
ReplyDeleteFeel free to surf to my web page NFL Cheap Jerseys
Hi, that's for PPTP and IPSEC, how about L2TP? my firewall supports VPN passthrough? but it seems like Win2008R2 doesn't, any ideas?
ReplyDeleteI think that what you said made a bunch of sense.
ReplyDeleteBut, what about this? what if you added a little information?
I am not saying your information isn't good, but suppose you added a title that grabbed folk's attention?
I mean "How to configure Windows VPN in less than 5 minutes!" is a little boring.
You might look at Yahoo's front page and watch how they create post titles to grab people interested. You might add a video or a pic or two to grab readers interested about what you've got to
say. Just my opinion, it could make your posts a little bit more interesting.
Here is my blog post :: Borse Gucci Ufficiale
I seriously love your site.. Excellent colors &
ReplyDeletetheme. Did you make this web site yourself? Please reply
back as I'm attempting to create my own site and want to learn where you got this from or just what the theme is named. Appreciate it!
Feel free to visit my site: Kris Letang Jersey
Hello, I think your blog might be having browser compatibility issues.
ReplyDeleteWhen I look at your blog in Chrome, it looks fine but when opening in Internet Explorer, it has some overlapping.
I just wanted to give you a quick heads up! Other then that,
wonderful blog!
My weblog Converse Pas Cher
Interesting blog! Is your theme custom made or did you
ReplyDeletedownload it from somewhere? A design like yours with a few
simple adjustements would really make my blog jump out.
Please let me know where you got your theme. Thanks
Here is my blog post Louis Vuitton Outlet
Hi, for all time i used to check website posts here in the early
ReplyDeletehours in the daylight, for the reason that i love to find out more and more.
Stop by my weblog Michael Kors Outlet
You really make it appear really easy with your
ReplyDeletepresentation but I find this matter to be really one thing that I
feel I might by no means understand. It seems
too complex and very large for me. I'm taking a look forward to your subsequent post, I will attempt to get the grasp of it!
Feel free to surf to my weblog; Cheap NFL Jerseys
Hey there! Do you know if they make any plugins to help with Search Engine Optimization?
ReplyDeleteI'm trying to get my blog to rank for some targeted keywords but I'm not seeing very good success.
If you know of any please share. Many thanks!
my site: Abercrombie France
' And those people that declared me crazy (I'm
ReplyDeletenot going to mention any names), have their own radio shows right now.
Will "the Thrill" Viharo is a pulp fiction author and B Movie impresario.
Started in 1999; based in Trance birthplace Germany, Ableton
released their first version Ableton Live in 2001.
Also visit my web site :: Jean Michel Jarre Discography Free Download
Hi there i am kavin, its my first time to commenting anywhere, when i
ReplyDeleteread this post i thought i could also create comment due to this good article.
Also visit my web-site ... Louis Vuitton Outlet
Someone essentially help to make severely posts I'd state. This is the very first time I frequented your web page and so far? I surprised with the analysis you made to make this actual submit amazing. Great activity!
ReplyDeleteAlso visit my web-site :: Cheap Louis Vuitton Handbags
Hello! Someone in my Facebook group shared this site with us so I came to take a look.
ReplyDeleteI'm definitely enjoying the information. I'm bookmarking and will
be tweeting this to my followers! Superb blog and great design.
Also visit my page ... Solde Air Jordan
Hi there I am so glad I found your webpage, I really found you by mistake, while I was looking on Digg for something else,
ReplyDeleteAnyways I am here now and would just like
to say thanks a lot for a tremendous post and a all round enjoyable blog
(I also love the theme/design), I don't have time to browse it all at the moment but I have bookmarked it and also added your RSS feeds, so when I have time I will be back to read much more, Please do keep up the fantastic work.
my blog :: Gafas Oakley
After I initially commented I appear to have clicked the -Notify me when new comments
ReplyDeleteare added- checkbox and now whenever a comment
is added I get 4 emails with the same comment. Perhaps there is a
way you can remove me from that service? Thank you!
Feel free to surf to my webpage ... Sac Guess Pas Cher
Its like you read my mind! You appear to know a lot about
ReplyDeletethis, like you wrote the book in it or something. I think that you could do with some pics to drive the message home a little bit, but instead
of that, this is great blog. An excellent read.
I will definitely be back.
my site - Air Jordan
Hello, all the time i used to check web site posts here early in the dawn,
ReplyDeletebecause i like to learn more and more.
Feel free to surf to my web blog :: Chaussure De Foot
Hi, Thanks for this tuts.
ReplyDeleteLast question, is it possible to setup VPn on server with just only one NIC?
thanks.
Greate pieces. Keep writing such kind of information
ReplyDeleteon your site. Im really impressed by it.
Hey there, You've done an excellent job. I will certainly digg it and for my part suggest to my friends. I'm sure they will be benefited from this web site.
Feel free to surf to my blog post ... Abercrombie & Fitch
Here are some ideas i experinced myself and in addition read
ReplyDeleteat other blogs. - Use names (Apple, Google, George Bush, Paris Hilton, and so on).
Synchronization Licensing Fee -Also implied as the "Synch Fee", this is given to marked
specialists who are qualified for synchronize their music to movie.
Also visit my web page: random access memories Mp3
Sometimes when crocheting a pattern, a video can be
ReplyDeletemuch more helpful than reading the instructions. Later on in the same Century the new religion also worked hard to change the custom of Blood-revenge.
You don't have to add that you are also being a cheapskate, or maybe you could take advantage of a teachable moment about sticking to a budget.
Feel free to surf to my web page ... free pdf ebook download
I don't even understand how I stopped up here, but I thought this publish used to be great. I do not know who you are but certainly you're going
ReplyDeleteto a famous blogger for those who are not already.
Cheers!
Stop by my web blog Sac Guess Pas Cher (http://www.beyonddelay.com)
Asking questions are really pleasant thing if you are not understanding anything completely,
ReplyDeleteexcept this piece of writing gives pleasant understanding even.
my weblog :: Sac A Main Louis Vuitton
I was curious if you ever considered changing the structure of your website?
ReplyDeleteIts very well written; I love what youve got
to say. But maybe you could a little more in the way
of content so people could connect with it better.
Youve got an awful lot of text for only having one or two images.
Maybe you could space it out better?
Review my web site - Air Max
Wow, that's what I was looking for, what a material! present here at this weblog, thanks admin of this web page.
ReplyDeleteAlso visit my web site sell beats fast
Fantastic site. Plenty of helpful information here. I am
ReplyDeletesending it to some friends ans additionally sharing in delicious.
And obviously, thank you to your effort!
Feel free to surf to my web blog ... Nike Air Max
If some one needs to be updated with most up-to-date technologies therefore he must be pay a quick visit this website and be up to date all the time.
ReplyDeleteHere is my web-site ... Air Jordan
Hello, yup this piece of writing is actually nice and I have learned lot of things from
ReplyDeleteit about blogging. thanks.
Feel free to surf to my homepage :: NFL wholesale Jerseys
I love it whenever people come together and share ideas.
ReplyDeleteGreat website, keep it up!
My page ... Mulberry UK
Hi there to all, how is all, I think every one is getting more from this site, and your views are pleasant
ReplyDeletefor new viewers.
Feel free to visit my webpage - Louis Vuitton Handbags