- Select DirectAccess and VPN (RAS) under Role Services
- Once the Role installation completes you can use the Getting Started Wizard to complete the VPN configuration.
This opens the MMC for Routing and Remote Access
- Right click the server and select Configure and Enable Routing and Remote Access
This launches the Setup Wizard
- Since their is only one network interface you will need to choose Custom Configuration
Now that your VPN installation is complete you will need to modify your Windows Firewall to allow the VPN traffic You will need to open the following ports.
- For PPTP: 1723 TCP and Protocol 47 GRE (also known as PPTP Pass-through
- For L2TP over IPSEC: 1701 TCP and 500 UDP
- For SSTP: 443 TCP
Enabling Users on VPN
You will need to enable users to Dial-in On a standalone server (default) this can be done in the Computer Management MMC, if you are in a domain environment you can do this in the User properties of Active Directory.
Defining a Static Address 'pool'
Since you don’t have a DHCP Server in our VPS Environment you have to add a static address pool.
- Right click on the Remote Access server and select Properties
- Select the IPv4 tab and select Static address pool
- Add your IP range eg. 192.168.1.100 - 192.168.1.101 And define the number of addresses to 2
Printer and File Sharing through VPN
You may run into some issues with printer and file sharing you can do the following to resolve this issue.
- You can use gpedit.msc to change the settings.
- Computer Configuration->Windows Settings->Security Settings->Network List Manager Policies-> VPN Connection
- Change the location type to Private