Mushure mekutsvaga paInternet mukutsvaga software yekuvaka yako VPN, unogara uchisangana neboka remadhairekitori ane hukama neOpenVPN, izvo zvinonetsa kumisikidza nekushandisa, zvinoda muridzi weWireguard mutengi; imwe chete SoftEther kubva kusekisi iyi yese ine. kushandiswa kwakakwana. Asi isu tichataura, sekutaura, nezve yekuzvarwa Windows VPN kuitiswa - Routing Uye Remote Access (RRAS).
Nechikonzero chisinganzwisisike, hapana akanyora mune chero gwara nezvekuti ungaisa sei zvese izvi uye maitiro ekugonesa NAT pazviri, saka isu tichagadzirisa zvese uye kukuudza maitiro ekuita yako VPN paWindows Server.
Zvakanaka, iwe unogona kuodha yakagadzirira-yakagadzirwa uye yakatemerwa VPN kubva kune yedu , nenzira, inoshanda kunze kwebhokisi.
1. Isa masevhisi
Kutanga, tinoda Windows Server Desktop Zvakaitika. Iko kuisirwa kweCore hakuzotishandire, nekuti chikamu cheNPA chisipo. Kana komputa iri nhengo yedomasi, unogona kuenda neServer Core, mune iyo nyaya iyo yese inogona kuiswa mugigabyte ye RAM.
Tinofanira kuisa RRAS neNPA (Network Policy Server). Tichada yekutanga kugadzira tunnel, uye yechipiri inodiwa kana sevha isiri nhengo yedomasi.
Mukusarudza kwezvikamu zveRRAS, sarudza Yakananga kuwana uye VPN uye Routing.
2. Gadzira RRAS
Mushure mekunge taisa zvinhu zvese uye tamisazve muchina, tinoda kutanga kumisikidza. Sezviri pamufananidzo, mukutanga, tinowana maneja weRRAS.
Kuburikidza neiyi snap-mukati tinogona kubata maseva ane RRAS akaiswa. Tinya-kurudyi, sarudza kuseta uye enda.
Sezvo tasvetuka peji rekutanga, tinoenderera mberi nekusarudza kugadzirisa uye kusarudza yedu.
Pa peji rinotevera tinokumbirwa kusarudza zvikamu, sarudza VPN uye NAT.
Uyezve, mberi. Ready.
Zvino isu tinoda kugonesa ipsec uye kugovera dziva rekero iyo NAT yedu ichashandisa. Tinya-kurudyi pane server uye enda kune zvivakwa.
Chekutanga, isa password yako yel2TP ipsec.
Pa IPv4 tab, unofanira kuseta huwandu hwekero dzeIP dzakapihwa vatengi. Pasina izvi, NAT haishande.
Zvino chasara kuwedzera interface kuseri kweNAT. Enda kune IPv4 sub-chinhu, tinya-kurudyi pane isina chinhu uye wedzera chimiro chitsva.
Pane iyo interface (iyo isiri Yemukati) isu tinogonesa NAT.
3. Bvumira mitemo mufirewall
Zvose zviri nyore pano. Iwe unofanirwa kutsvaga iyo Routing uye Remote Access yekutonga boka uye uvagonese vese.
4. Kugadzira NPS
Tiri kutsvaga Network Policy Server mukutanga.
Mune ma tabo ayo ese marongero akanyorwa, iwe unofanirwa kugonesa ese akajairwa. Izvi zvinobvumira vese vashandisi vemunharaunda kuti vabatane neVPN.
5. Batanidza neVPN
Nezvinangwa zvekuratidzira, tichasarudza Windows 10. Mukutanga menyu, tsvaga VPN.
Dzvanya pabhatani rekuwedzera rekubatanidza uye enda kune zvigadziriso.
Seta zita rekubatanidza kune chero chaunoda.
IP kero ndiyo kero yeVPN server yako.
VPN mhando - l2TP ine pre-yakagovaniswa kiyi.
Yakagovaniswa kiyi - vpn (yemufananidzo wedu pamusika.)
Uye iyo yekupinda uye password ndiyo yekupinda uye password kubva kumushandisi wenzvimbo, kureva, kubva kune maneja.
Dzvanya pakabatanidza uye wapedza. Iye zvino VPN yako yagadzirira.
Tinovimba kuti gwara redu richapa imwezve sarudzo kune avo vanoda kugadzira yavo VPN vasina kubata neLinux kana kungoda kuwedzera gedhi kune yavo AD.
Source: www.habr.com