Bayan yin jita-jita ta Intanet don neman software don gina VPN ɗin ku, koyaushe kuna ci karo da gungun jagororin da suka danganci OpenVPN, waɗanda ba su dace ba don saitawa da amfani, suna buƙatar abokin ciniki na Wireguard; isasshiyar aiwatarwa. Amma za mu yi magana, don yin magana, game da aiwatarwa na asali na Windows VPN - Rarraba da Samun Nesa (RRAS).
Don wani dalili mai ban mamaki, babu wanda ya rubuta a cikin kowane jagora game da yadda za a tura duk wannan da yadda za a kunna NAT akan shi, don haka yanzu za mu gyara komai kuma mu gaya muku yadda ake yin VPN akan Windows Server.
Da kyau, zaku iya yin oda da shirye-shiryen VPN da aka riga aka tsara daga namu , Af, yana aiki daga akwatin.
1. Shigar da ayyuka
Da farko, muna buƙatar Ƙwarewar Desktop na Windows Server. Shigar da Core ba zai yi aiki a gare mu ba, saboda bangaren NPA ya ɓace. Idan kwamfutar memba ce ta wani yanki, za ku iya tafiya tare da Server Core, wanda a cikin wannan yanayin za a iya tattara dukkan abin a cikin gigabyte na RAM.
Muna buƙatar shigar da RRAS da NPA (Network Policy Server). Za mu buƙaci na farko don ƙirƙirar rami, kuma ana buƙatar na biyu idan uwar garken ba memba na yankin ba ne.
A cikin zaɓin abubuwan RRAS, zaɓi damar kai tsaye da VPN da Routing.
2. Saita RRAS
Bayan mun shigar da duk abubuwan da aka gyara kuma muka sake kunna injin, muna buƙatar fara saiti. Kamar yadda yake a cikin hoton, a farawa, mun sami manajan RRAS.
Ta hanyar wannan karye-in za mu iya sarrafa sabar tare da shigar RRAS. Danna-dama, zaɓi saiti kuma tafi.
Bayan mun tsallake shafin farko, mun matsa zuwa zabar tsari da zabar namu.
A shafi na gaba ana tambayar mu don zaɓar abubuwan haɗin gwiwa, zaɓi VPN da NAT.
Bugu da ari, kara. Shirya
Yanzu muna buƙatar kunna ipsec kuma mu sanya wuraren adiresoshin da NAT ɗinmu za ta yi amfani da su. Danna dama akan uwar garken kuma je zuwa kaddarorin.
Da farko, shigar da kalmar wucewa ta l2TP ipsec.
A shafin IPv4, dole ne ka saita kewayon adiresoshin IP da aka ba abokan ciniki. Idan ba tare da wannan ba, NAT ba zai yi aiki ba.
Yanzu duk abin da ya rage shi ne ƙara haɗin haɗin gwiwa a bayan NAT. Je zuwa ƙaramin abu na IPv4, danna-dama akan sarari mara komai kuma ƙara sabon dubawa.
A kan dubawa (wanda ba na ciki ba) muna kunna NAT.
3. Bada dokoki a cikin Tacewar zaɓi
Komai yana da sauki a nan. Kuna buƙatar nemo rukunin ƙa'idodin Ruting da Remote Access kuma kunna su duka.
4. Kafa NPS
Muna neman Sabar Manufofin Sadarwa a farawa.
A cikin shafukan da aka jera duk manufofin, kuna buƙatar kunna daidaitattun guda biyu. Wannan zai ba duk masu amfani da gida damar haɗi zuwa VPN.
5. Haɗa ta hanyar VPN
Don dalilai na nunawa, za mu zaɓi Windows 10. A cikin menu na farawa, nemi VPN.
Danna maɓallin ƙara haɗin haɗin kuma je zuwa saitunan.
Saita sunan haɗin zuwa duk abin da kuke so.
Adireshin IP shine adireshin sabar VPN ɗin ku.
Nau'in VPN - l2TP tare da maɓallin da aka riga aka raba.
Maɓallin raba - vpn (don hotonmu a kasuwa.)
Kuma kalmar shiga da kalmar sirri sune login da kalmar sirri daga mai amfani da gida, wato daga mai gudanarwa.
Danna kan haɗin kuma kun gama. Yanzu VPN ɗin ku yana shirye.
Muna fatan jagoranmu zai ba da ƙarin zaɓi ga waɗanda suke son yin nasu VPN ba tare da yin mu'amala da Linux ba ko kuma kawai suna son ƙara ƙofa zuwa AD ɗin su.
source: www.habr.com