Tuesday, October 4, 2022

How To Setup VPN For Remote Access

Don't Miss

Top 3 VPN Service Providers 2020

How to install and configure Remote Access (VPN) on Windows Server 2012 R2 (Step by Step guide)

In order to setup a VPN to connect to your work network from home, you need to select a VPN service provider. Selecting the right VPN requires proper research and it can become a time-consuming task.

For your ease, we have done the leg-work for you and come up with the list of best office VPN service providers.

Below is the list of best office VPN service providers ranked on the basis of their features and the value-for-money. So, lets dive in.

How To Access Windows Remote Desktop Over The Internet

Walter Glenn is a former Editorial Director for How-To Geek and its sister sites. He has more than 30 years of experience in the computer industry and over 20 years as a technical writer and editor. He’s written hundreds of articles for How-To Geek and edited thousands. He’s authored or co-authored over 30 computer-related books in more than a dozen languages for publishers like Microsoft Press, O’Reilly, and Osborne/McGraw-Hill. He’s also written hundreds of white papers, articles, user manuals, and courseware over the years.Read more…

Weve covered several solutions for accessing your desktop remotely over the Internet. However, if you have a Professional, Enterprise, or Ultimate edition of Windows, you already have the full Windows Remote Desktop installed. Home versions of Windows only have the remote desktop client for letting you connect to machines, but you need one of the pricier editions in order to connect to your PC. If youre using Remote Desktop, getting it set up for access over the internet isnt too difficult, but you will have to jump through a couple of hoops. Before you get started, enable Remote Desktop on the PC you want to access and make sure you can reach it from other computers on your local network.

RELATED:What Is a VPN, and Why Would I Need One?

What Is A Remote Session

Often we choose remote sessions as a solution because it gives you the ability to take control of a computer at your office.

Unlike a VPN, which sends files back and forth between your home and office computers, a remote session lets you take control of an office computer so as to make it feel like you were physically sitting at the office computer.

The main benefit of a remote scenario like this is that with a VPN, your home computer may not have your work programs installed, your work email configured, or any of the other accouterment that is necessary to getting your job accomplished.

With a remote session, you are literally using your office computer like you would if you were at the office.

The downside of a remote session is that its hard to transfer files and information from your home computer to the office computer.

Recommended Reading: What VPN Works With Prime Video

Define The Ssl Certificate For Routing And Remote Access Service

In this section we attach the self signed certificate we created at part Part 3 to the routing and Remote Access service, then only the remote vpn clients can communicate over SSTP.

In Routing and Remote Access Manager > > right click Server name and choose Properties.

Under Security Tab , choose our self signed certificate and click OK.

Confirm the restart of routing and remote access service by clicking Yes.

How Do I Setup Remote Access

L2TP+IPSec VPN Remote Access on Cisco Router_P01

There are programs like TeamViewer, GoToAssist, RemotePC that are easy to purchase and install. You simply leave the program running and then launch the remote connection whenever you want.

Your best option, if possible, is RDP RDP is built into Windows so its free and it has all the functionality that most users need .

RDP has to be specifically allowed through your Router/Firewall so again, there is some higher level I.T. knowledge to accomplish this goal.

Dont want to deal with an IT Person, then get GoToAssist GoToAssist can be a little pricey but it works great and is simple to setup and use. If you dont want to setup RDP, then just go with this.

You May Like: Openvpn Xbox One

Remote Access VPN Security Protocols

Security is an important factor when comparing a remote access VPN and site-to-site VPN. Network and security teams can use multiple remote access VPN configuration protocols.

Each approach requires VPN client software on every remote system, as well as a VPN gateway at the corporate headquarters network. The corporate host supports the same protocols and options or extensions to facilitate access from remote user networks.

IPsec

The most commonly used secure tunneling protocol is the IPsec encapsulating payload protocol. IPsec is an extension to the standard IP security standard currently used by the internet and most corporate networks. Most routers and firewalls now support IPsec.

Site-to-site VPNs typically use the IPsec protocol. Another site-to-site VPN protocol is MPLS, but MPLS does not provide encryption.

Secure Sockets Layer

SSL VPNs offer an alternative to IPsec VPNs. These are often referred to as clientless because they don’t require the use of specialized software on the remote user’s computer.

In an SSL VPN, the remote user connects to the network through a web browser. Information is encrypted either with SSL or the Transport Layer Security protocol.

What Is A Remote Access VPN

Businesses use remote access VPNs to establish a secure connection between their network and the devices used by remote workers. Once connected, employees are able to access the resources on the network just as if their devices were physically plugged in at the office.

A remote access VPN works by creating a virtual tunnel between an employees device and the companys network. This tunnel goes through the public internet but the data sent back and forth through it is protected by encryption and security protocols to help keep it private and secure.

The two main components of this type of VPN are a network access server and VPN client software.

A network access server could be a dedicated server or it might be a software application running on a shared server. Users connect to the NAS over the internet in order to use a remote access VPN. In order to sign in to the VPN, the NAS requires that users provide valid credentials. To authenticate these credentials, the NAS uses either its own authentication process or a separate authentication server running on the network.

Recommended Reading: Does A VPN Use Cellular Data When Connected To Wifi

Install Remote Access Server Role On Windows Server 2019

Log into the Windows Server 2019 > Click Windows Start Icon > > Click Server Manager.

Choose the Installation Type as Role based or feature based installation and click Next.

From Server selection, choose select a server from the server pool and click Next.

From Server Role choose Remote Access and click Next.

Leave Features section as it is and click Next.

Under Role Services choose Direct Access and VPN and Routing and click Next. A popup window will appear for confirming the features that need to be installed for Direct Access and VPN. Confirm it by clicking Add Features.

Under Web Server Role Section click Next.

Under IIS Role services section leave the default one and Click Next.

Under Final Confirmation section click Install.

The Remote Access server role install will start automatically and normally it will get completed with in few Minutes. Once the installation succeeded click close.

Configuring Remote Access Service On VPN Server

How to Configure VPN Remote Access IPsec on Cisco Router#02

From Server Manager Choose Remote Access > > Right click the Server name > > Choose Remote Access Management.

Under Direct Access And VPN Click Run the Remote Access Setup Wizard

The Configure remote Access wizard will open Click Deploy VPN only

In the Routing and Remote Access Console , right click server name and choose configure and Enable routing and remote access option.

Choose Virtual private network access and NAT option. Click Next.

In the select Network Interface section, choose the network adaptor where our public IP configured and click Next.

In the IP address Assigned section, choose from a specified range of address and Click Next. Here we are trying to define the private IP address that server give to remote VPN click PC after successful connection.

Give the starting and ending private IP range in the corresponding fields. Click Ok. We are giving IPs starting from 192.168.3.150 to 192.168.3.160.

Now we will see the assigned range and click Next.

In the Do you want to setup this server to work with a radius server question section, select No, use Routing and Remote Access to authenticate connection requests and Click next.

This completes the configuration of Routing and Remote Access Server. Now we can see a green up arrow next to server hostname and which shows the Routing and Remote access server service started successfully.

Also Check: Can I Create My Own VPN

Remote Desktop And Applications

You can access university resources, including your regular work desktop, shared internal files, and folders by using the full downloadable VMware Horizon Client or the Horizon web client through your preferred browser. This remote option provides full connectivity to university resources, should you need that access, via a virtual windows desktop. Be sure to install and register for Duo first before starting the VMware Horizon Client.

Please note that you will be prompted for multi-factor authentication through Duo during login to the VMWare Horizon environment. Registration and installation of Duo will need to be completed prior to usage. Guide for using Duo with VMware Horizon.

  • You can connect to either your full Windows 10 desktop or launch individual applications published for you
  • We encourage you to use individual applications rather than the full Windows 10 desktop for better performance and a seamless experience
  • To ensure maximum capacity and availability for other faculty and staff, please be sure to close applications and disconnect from the VMWare Horizon environment after use to free up resources
  • This option is designed for temporary sessions. Remember to save all files to your personal network drive, the H:\ drive or OneDrive for Business.

How Would A Remote Access VPN Be Useful To Me And My Business

Using a remote access VPN provides several advantages for businesses. The most important benefit though is data security. When an offsite employee sends data through a VPN, it is encrypted, so even if a hacker is able to intercept that data, they wont be able to use it. This is particularly important if an employee accesses their companies network using public Wi-Fi while traveling because traffic sent over these networks is usually not encrypted.

Another advantage of remote access VPNs is that they provide companies with an affordable way to secure data sent by offsite employees. The initial investment needed to set up a remote access VPN is minimal and they can easily be scaled as a company grows and this is especially true if a VPN service provider is used.

Since remote access VPNs are affordable and secure, organizations can feel more comfortable with letting their employees work from home or while traveling. Employees who can work where and when they want also tend to be happier as well as more productive.

Read Also: How To Setup VPN On Smart TV

System Configuration We Used

Used Windows server 2019 which is covert as a VPN SSTP server.

Used Windows 10 client PC for connecting to Windows VPN server 2019.

Another thing is we are settings up this SSTP VPN on windows server 2019 which only have one Network interface. So this blog article can be implemented on Most of VPS provided by Hosting Providers or with the Cloud Windows VMs.

Additionally, SSTP VPN setup needed SSL certificate. In this testing we are using self signed certificate generated for VPS host-name. We can also use Lets Encrypt SSL certificate or SSL certificate purchased for our Server Domain name through SSL vendors.

Here I have divided the whole steps in to different parts. Lets get started. Even though we are performing the install on Windows server 2019, you can refer this article for Windows server 2016 and windows server 2012.

Allow VPN Ports On Windows Firewall

XG Firewall (v18): How to Configure SSL VPN Remote Access ...

In this part we are allowing the ports used by the VPN server for communication on windows firewall. Otherwise the remote VPN clients wont be able to communicate with the VPN server. Below are the ports we need to allow in VP server firewall.

  • For PPTP: 1723 TCP and Protocol 47 GRE (also known as PPTP Pass-through
  • For L2TP over IPSEC: 1701 TCP and 500 UDP
  • For SSTP: 443 TCP

Now issue below power shell commands to allow ports in windows firewall.

Now if we look at the windows firewall inbound section , we can see the ports are allowed.

This Completes the PPTP VPN server setup on Windows server 2019. Now Lets Proceed with the Remote VPN Client on Windows 7 PC setup and Try to Establish a VPN server connection.

You May Like: Att Free VPN

Solution : Use A Free Name

This solution is a lot like Solution 2, except that instead of registering your own name , you can use a free name provided by the Dynamic DNS provider. For example, no-ip.com will provide you with names you can use and provide the Dynamic DNS service, all for free.

The Problem With Solutions 2 and 3

The only problem with Dynamic DNS services is time delays. There is a delay between the time you update your IP address with the Dynamic DNS and the time when the rest of the Internet becomes aware of the change. This delay may be a few seconds to many minutes. During this delay, the DNS is incorrect, and anyone going a domain name will be told the wrong IP address.

If a delay of 10 minutes, during which your website wont work correctly, is acceptable, then there is no problem at all. If, however, it is imperative that your website be up as much as possible, this consideration may force you to get a static IP address assigned to your office.

The other factor to consider is just how often does your IP address actually change. Even though, in theory, your dynamic IP address may change, in practice often an ISP assigns you a number and that number stays unchanged until your reset your modem. If this happens rarely, then a 10 minute delay from the DNS will not matter since it happens so rarely.

Allow Remote Access To Our VPN Server Through Public Network Adaptor

For maintain the access to the VPN server over remote desktop we need to allow the remote access port over our public network adaptor itself through routing and remote access properties section. Otherwise we will loss the access to the server through remote desktop because we only have one Network interface available on server for both VPN traffic and for the remote access.

In the Routing and Remote Access Manager , Expand Server name > > Expand IPv4 > > Choose NAT > > Right Click Our Public Network Adaptor and choose Properties.

Select Remote Access , A pop up window will appear, in the Private Address filed give our server public IP address and click OK. After that click Apply and OK.

If you have different RDP port, you need to create a new allow rule by clicking add option.

You May Like: How To Setup VPN On Att Uverse Router

Which VPN Providers Offer Remote Access VPNs

If youre in the market for a remote access VPN, you may find it difficult to determine which providers offer them. From our own research, we found that many of the other providers on our list of the best business VPN services offer remote access VPNs.

Take Perimeter 81 by way of an example. It’s worked to build in super easy single-click access to remote in to local networks and cloud-based resources while its unified cloud management platform seeks to make it easy for IT to manage networks and permissions from remote locations. Unlike more consumer-focused VPNs youll have better luck finding a remote access VPN if you narrow down your search to business VPNs.

However, it is still recommended that you check with any providers youre interested in to ensure that they do in fact offer remote access VPN services. Or head to the Perimeter 81 website to discover more about what its remote access VPN can offer you and your business.

Support For Remote Access Via VPN

How to Configure VPN Remote Access IPsec on Cisco Router#01

This section discusses some of the issues regarding the access of Soundweb London networked devices from a remote PC over the internet. For example, this could allow monitoring of a Soundweb London installation using HiQnet London Architect running on a remote PC with Internet access. During the discussion, HiQnet London Architect software version 1.12 is assumed.

One issue of importance during this remote access is security of the data. Communication is taking place over a public network and if no security measures are taken this data could potentially be captured and used by anyone en-route. Fortunately security measures such as use of a ‘Virtual Private Network’ can allow such communication over the Internet in a secure way.

You May Like: What Is A VPN Profile

Work From Home: How To Set Up A VPN

As the COVID-19 pandemic has many organizations switching employees to remote work, a virtual private network is essential for countering the increased security risks

If youre newly working from home because of the COVID-19 outbreak, you probably have to learn some new tools and tricks very quickly now. Here we look at virtual private network technology. In another article, we discuss Two-Factor Authentication .

For now, however, well start with the basics of how to set up and use a VPN to secure your connection to your office. Were not talking about building your own from scratch, just how to get up and running quickly.

Create Additional Loopback Network Adaptor On Windows Server 2019

Its for skipping the error while running Configuring Remote Access Wizard and the error will be like below.

Less than two network interfaces were detected on this machine. For standard VPN server configuration at least two network interfaces need to be installed. Please use custom configuration path instead.

Under Server Manager click Tools > > Computer Management.

From Computer Management window Click Device Manager > > Click VM name from Right side.

Under Actions tab > > Click Add legacy Hardware

A add Hardware wizard will open and click Next.

Choose option Install the hardware that I manually select from a list and click Next.

Choose Network Adaptors and click Next.

Choose Microsoft as Manufacturer and Microsoft KM-TEST Loopback Adaptor as Model. Click Next.

Confirm the Install by clicking Next.

Once the install got completed close the install wizard by clicking Finish.

Now, we can confirm the new network adaptor install from the Computer Management panel itself. For that click Device Manager > > Click VM name > > Expand Network Adaptors, there we can see the newly added LoopBack Network adaptor available.

Also Check: VPN And Pokemon Go

More articles

Popular Articles