How to implement VPN2003 single network card VPN

  

VPN, that is, virtual private network, use public network to connect multiple private networks or network nodes, and connect through public network can greatly reduce the cost of communication, so many users will win2003 select set VPN system, if the card is how when, under win2003 configure the VPN server to achieve it

What is a VPN:?

virtual private network (VPN, virtual private network ) is a private private network technology built using public networks. It is not a real private network, but it can realize the functions of a private network. A virtual private network refers to a technology that relies on an ISP (Internet Service Provider) and other NSPs (network service providers) to establish a dedicated data communication network in a public network. In a virtual private network, the connection between any two nodes does not have the end-to-end physical link required by the traditional private network, but is dynamically composed of resources of a certain public network. The IETF draft understands that IP-based VPNs are: "Using IP mechanisms to emulate a private WAN" is a private point-to-point private line technology that simulates a point-to-point technology on a public data network. Virtual is that users no longer need to have actual long-distance data lines, but long-distance data lines using the Internet public data network. The so-called private network means that users can develop a network that best suits their needs.

Steps for implementing the VPN server in Windows2003 to process the VPN server:

1. Pre-preparation

First, the VPN server conflicts with the ICS service that comes with the system, and starts to configure the VPN server. Before you close the ICS service, after shutting down the ICS service, remember to restart the machine.

In addition, the so-called fire wall of many anti-virus software will also affect, if there is a problem, please consider temporarily shutting down the anti-virus software test or carefully observe the system log and anti-virus software log.

2. Enable windows2003VPN server

Administrative Tools-> Routing and Remote Access

Click on the server to which it belongs, right-click <Configure and start routing and remote access” In the following actions, if the operation fails, you can click ““ disable routing and remote access” at any time to restore to the original configuration and reconfigure.

Select “Custom Configuration&

If you only want VPN to connect to the server, select “VPN Access”, if you want to access the Internet through the server, you can also click ““ NAT and basic firewalls

Service configuration is complete, click & ldquo; is & rdquo; start service

3. Configure windows2003VPN server

Select the server, right click & ldquo; ”

Select the “IP” page, and then add the IP that you want to assign to the VPN client. Generally speaking, unless you have three layers of permissions, you can of course only assign private IP to the client. To insert a sentence here, you have to consider that many customers on the intranet use private IP such as “192.168.0.x”, if you also assign the private IP of the same segment, it will bring customers Some trouble, so I suggest you use some IP segments that are not commonly used.

Select the “IP routing>->“static routing';, right-click "letter static routing", this page should be empty by default

& ldquo; interface & rdquo; select the physical network card name, & ldquo; gateway & rdquo; fill the machine & nbsp; default gateway & rdquo; (This model uses the internal network, you should fill in the public network gateway IP of your server after the actual operation of the public network Address), <;target” and <;netmask" are filled in "0.0.0.0”

Select the server's "DHCP Relay Agent" to delete the default "ldquo; Internal & rdquo; Interface

Add a local interface for the local physical NIC for the DHCP Relay Agent

Select the local physical NIC

OK

is “NAT/Basic Firewall” Add New NAT Interface

Select Local Physical Network Card

On the “NAT/Basic Fire Wall” page, select “Common Interface to Connect to the Internet” ; and check “ enable on this interface NAT”

At this point, the VPN server configuration is complete

4. Configure the user demo

Add a user

in the “Dial in” property page & ldquo; Remote access rights (dial-in or VPN) & rdquo; attributes, check "Allow access" to allow the user to log in to the VPN server

Complete the map, after the user dials the server, you can The routing and remote access & rdquo; manager and the "networking" property page see the virtual connection.

The virtual private network uses the public network to build a private private network to realize the dedicated network function. Under the win2003 system, the setting operation method of the VPN server in the single network card is actually very simple, and the user only needs to follow the steps described above. The operation can be completed.

Copyright © Windows knowledge All Rights Reserved