The PPTP VPN client improves the drawbacks of the pptp dialing that comes with Windows. It is suitable for units and individuals with branch offices and branches. It is also suitable for people who are often on a business trip. This software can be used conveniently. Quickly connect to the company's intranet and access the intranet's office platform. Such a good software, then how do we configure packet filter support for it? This is what this tutorial will give you to explain, if you are interested, hurry up!
Windows Server 2003&ldquo Routing and Remote Access services support virtual private networks (VPNs). VPN clients can use "Point-to-Point Tunneling Protocol" (PPTP), “ Layer 2 Tunneling Protocol (L2TP) and "IP Security" (IPSec) to create a Windows Server 2003-based "<RTI ID=0.0> Routing and Remote Access & rdquo; Secure tunnel for serving VPN servers. In this way, the client becomes a remote node on the private network.
Multi-Host with External Interfaces Directly Connected to the Internet "Routing and Remote Access" Service VPN servers can use packet filtering to protect internal networks from external attacks. The best way to configure a packet filter in a secure environment is to use the principle of least privilege: discard all packets except those that are explicitly allowed.
How to configure PPTP filters to allow PPTP VPN client communication PPTP is a common VPN protocol because it is secure and easy to set up. In a pure Microsoft environment and a mixed environment, you can easily deploy PPTP. You can configure a Windows Server 2003-based "Route and Remote Access" service VPN server to drop non-PPTP packets by using a packet filter.
How to configure the PPTP input filter to allow inbound communication from a PPTP VPN client Click Start, point to Programs, point to Administrative Tools, and then click "Route and Remote Access".
In the left pane of the "Routing and Remote Access" console, expand Servers, and then expand IP Routing.
Click General, right-click the external interface, and then click Properties.
Click the General tab, click Inbound Filter, and then click New.
Click the “Target Network” checkbox to select it, then type the IP address of the external interface in the “IP Address" box. In the "Subnet Mask" box, type 255.255.255.255.
In the Protocols box, click TCP. In the "Destination port" box, type 1723, and then click OK.
Click “ Discard all packages except those that meet the following conditions.
Click New.
Click the “Target Network” checkbox to select it. In the "IP address" box, type the IP address of the external interface.
In the "Subnet Mask" box, type 255.255.255.255.
In the Protocol box, click Other. In the "Protocol Number" box, type 47, and then click OK twice.
How to configure the PPTP output filter to allow outbound communication to the PPTP VPN client
Click Start, point to Programs, point to Administrative Tools, and then click “Route and Remote Access” .
In the left pane of the "Routing and Remote Access" console, expand your server and then expand IP Routing.
Click General, right-click the external interface, and then click Properties.
Click the General tab, click Outbound Filters, and then click New.
Click the “Source Network” checkbox to select it. In the "IP address" box, type the IP address of the external interface. In the "Subnet Mask" box, type 255.255.255.255. In the Protocol box, click TCP. In the Source port box, type 1723, and then click OK.
Click on “Discard all packages except the following conditions.
Click the “Source Network” checkbox to select it. In the "IP address" box, type the IP address of the external interface. In the Protocol box, click Other. In the "Protocol Number" box, type 47, and then click OK twice.
After completing these changes, only PPTP traffic can go in and out of the external interface of the Routing and Remote Access service VPN server. These filters support communication with PPTP VPN clients that make inbound calls to the "Route and Remote Access" service VPN server.
VPN, that is, virtual private network, use public network to connect multiple private networks or ne
I often hear my friends complain that using batch Windows auto-upgrade files, there is a bunch of pr
Remote desktop is a very convenient use process, through remote desktop we can achieve the operation
In the win2003 system, users can write data to the shared folder without restrictions due to the per
Win2003 get rid of the small shadow of the program shadow
Cleverly change the access permissions of Win2003 folder
Easily set to reject windows 2003 leaks
SNMP service network security configuration under win2003 environment
Steps to set up Win 2003 Terminal Server
Tips for setting up Win 2003 operating system
Windows2003 implements NAT network sharing method
Two major steps to create a security system for win2003
Win2003 system to build a security line? Then enable built-in ICF
Windows 2003 to complete the FTP user isolation small trick
Ingenious settings for the system used by win2003 skills
Explain three different remote management methods in win2003
Work and entertainment, set the Win7 sound, give you a good mood
The first company in the innovation workshop was released. The main Tapas mobile phone system
"Start" on the personalized start menu
Windows XP Tutorial: Teach you how to set a password to delete files
What should I do if the Win8.1 Bing input method is not available in the search box?
G400, G500 can not be turned on using Windows 8 system wireless
Let Win XP be more secure, a few tricks, super killing skills