How to Setup a VPN Server in Windows Server 2008 R2

How to Setup a VPN Server in Windows Server 2008 R2

Open “Server Manager“.

On the top menu, click on “Action” and “Add Roles“.

This will bring up the role installation wizard. On the first screen titled “Before your begin” read the requirements and click “Next” to continue.

Next, on the screen titled “Select Server Roles“, place check mark on “Network Policy and Access Services” and click “Next” to continue.

On the third screen titled “Network Policy and Access Services” read what it is stated and click “Next” to continue.

On the following screen titled “Select Role Services” place a check mark on “Routing and Remote Access Services” and make sure “Remote Access Service” and “Routing” are selected as well. Click “Next” to continue”.

Next, on the screen titled “Confirm Installation Selection“, you will get a summary of everything that will be installed. Make sure everything looks good and click on the “Install” button. Once the installation finishes, click “Close” to end the wizard.

Back on the main Server Manager window, right click on “Configure and Enable Routing and Remote Access“.

This will bring up the “Routing and Remote Access Wizard“. On the first window, click “Next“.

On the second window, select “Custom Configuration” and click “Next” to continue.

Proceed by pressing the introductory text over the Next and you arrive at the menu where you should select the type of configuration, RRAS. Select Custom configuration and click Next .

Select the window the following options: VPN access, NAT and Lan Routing and proceed by pressing Next .

Accept on the last page, press the Finnish press that appears, and then restart the service window of the Start service .

Open the RRAS: sin menu, select the IPv4 option and enter from the NAT, on which the right-click pop-up menu, select New Interface 

Click on local area connection 

From the drop-down menu on an intranet network and press OK . Select the window that opens, setting Private interface , and then click OK .

Now do the same thing again, but select the external network adapter, and then click the settings window Public interface and tick the same box Enable NAT on this interface .

Now, the NAT network should look like this. I have named my network cards under the names for reasons of clarity Inside and Outside , so do not worry about them.

Now click on the RRAS at the top right of the server, and then click Properties .

Tick ​​the Security tab, select Allow custom IPsec policy for L2TP connection , and then type in the desired PreShared Key. I use a key example london2011 .

After accepting the settings, ask the RRAS that you turn it on again. To accept the declaration OK .

Right click on the RRAS in off the server, select All Tasks, and Restart to start the service again. The server is configured to half its value.

Create AD of the user who is given access for login. Change the user's Dial-in tab, clickNetwork Access Permission value of Allow access .