Академический Документы
Профессиональный Документы
Культура Документы
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
Articles Authors Blogs ISA Server Articles Links Message Boards Newsletter RSS Security Tests Services Software White Papers
In this article we will learn how to configure a connection to a virtual private network (VPN) using Windows XP. This article will show you how to create a new VPN connection using Microsoft Windows XP. By creating an encryption tunnel through the Internet, data can be passed safely.
1 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
"For a complete guide to security, check out 'Security + Study Guide and DVD Training System' from Amazon.com"
VPN Overview
A VPN is a private network created over a public one. Its done with encryption, this way, your data is encapsulated and secure in transit this creates the virtual tunnel. A VPN is a method of connecting to a private network by a public network like the Internet. An internet connection in a company is common. An Internet connection in a Home is common too. With both of these, you could create an encrypted tunnel between them and pass traffic, safely - securely. If you want to create a VPN connection you will have to use encryption to make sure that others cannot intercept the data in transit while traversing the Internet. Windows XP provides a certain level of security by using Point-to-Point Tunneling Protocol (PPTP) or Layer Two Tunneling Protocol (L2TP). They are both considered tunneling protocols simply because they create that virtual tunnel just discussed, by applying encryption.
2 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
3 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
7. Click Virtual Private Network connection, and then click Next. 8. If you are prompted, you need to select whether you will use a dialup connection or if you have a dedicated connection to the Internet either via Cable, DSL, T1, Satellite, etc. Click Next.
4 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
9. Type a host name, IP or any other description you would like to appear in the Network Connections area. You can change this later if you want. Click Next.
10. Type the host name or the Internet Protocol (IP) address of the computer that you want to connect to, and then click Next. 11. You may be asked if you want to use a Smart Card or not.
5 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
12. You are just about done, the rest of the screens just verify your connection, click Next.
13. Click to select the Add a shortcut to this connection to my desktop check box if you want one, if not, then leave it unchecked and click finish. 14. You are now done making your connection, but by default, it may try to connect. You can either try the connection now if you know its valid, if not, then just close it down for now.
6 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
15. In the Network Connections window, right-click the new connection and select properties. Lets take a look at how you can customize this connection before its used. 16. The first tab you will see if the General Tab. This only covers the name of the connection, which you can also rename from the Network Connection dialog box by right clicking the connection and selecting to rename it. You can also configure a First connect, which means that Windows can connect the public network (like the Internet) before starting to attempt the VPN connection. This is a perfect example as to when you would have configured the dialup connection; this would have been the first thing that you would have to do. It's simple, you have to be connected to the Internet first before you can encrypt and send data over it. This setting makes sure that this is a reality for you.
7 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
17. The next tab is the Options Tab. It is The Options tab has a lot you can configure in it. For one, you have the option to connect to a Windows Domain, if you select this check box (unchecked by default), then your VPN client will request Windows logon domain information while starting to work up the VPN connection. Also, you have options here for redialing. Redial attempts are configured here if you are using a dial up connection to get to the Internet. It is very handy to redial if the line is dropped as dropped lines are very common.
8 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
18. The next tab is the Security Tab. This is where you would configure basic security for the VPN client. This is where you would set any advanced IPSec configurations other security protocols as well as requiring encryption and credentials.
9 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
19. The next tab is the Networking Tab. This is where you can select what networking items are used by this VPN connection.
10 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
20. The Last tab is the Advanced Tab. This is where you can configure options for configuring a firewall, and/or sharing.
Connecting to Corporate
Now that you have your XP VPN client all set up and ready, the next step is to attempt a connection to the Remote Access or VPN server set up at the corporate office. To use the connection follow these simple steps. To open the client again, go back to the Network Connections dialog box. 1. One you are in the Network Connection dialog box, double-click, or right click and select Connect from the menu this will initiate the connection to the corporate office.
11 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
2. Type your user name and password, and then click Connect. Properties bring you back to what we just discussed in this article, all the global settings for the VPN client you are using. 3. To disconnect from a VPN connection, right-click the icon for the connection, and then click Disconnect
Summary
In this article we covered the basics of building a VPN connection using Windows XP. This is very handy when you have a VPN device but dont have the client that may come with it. If the VPN Server doesnt use highly proprietary protocols, then you can use the XP client to connect with. In a future article I will get into the nuts and bolts of both IPSec and more detail on how to configure the advanced options in the Security tab of this client.
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
Real-Time Article Update (click for sample) Monthly Article Update (click for sample)
Related links
Virtual Private Networking Comparing VPN Options Secure Socket Tunneling Protocol Configuring Gateway to Gateway L2TP/IPSec VPNs Part 2: Configuring the Infrastructure
Featured Links*
Is your website vulnerable to Cross Site scripting attacks? Find out with Acunetix WVS - Free Edition - No time outs! Download the Free Edition today! Powerful security event log monitoring, analysis and management across your LAN/WAN Are you managing your event logs efficiently, without wasting valuable time? Be served with the events that matter and automatically monitor and manage Windows event logs, W3C logs, Syslog events and SNMP Traps. Download a free trial today! Download ScriptLogic's Active Administrator and get a free eBook! Download ScriptLogic's Active Administrator and get a free copy of the eBook "The Administrator's Shortcut Guide to Active Directory Security" by Derek Melber and Dave Kearns.
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
Receive Real-Time & Monthly WindowSecurity.com article updates in your mailbox. Enter your email below! Click for Real-Time sample & Monthly sample
Enter Email
Community Area
Log in | Register
Solution Center
Learn about Cross Site Scripting and other web attacks Sponsored by Acunetix
14 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
Articles & Tutorials Authentication, Access Control & Encryption Content Security (Email & FTP) Firewalls & VPNs Intrusion Detection Misc Network Security Product Reviews Viruses, trojans and other malware Web Application Security Web Server Security Windows 2003 Security Windows Networking Windows OS Security Wireless Security Authors Derek Melber Don Parker Jakob H. Heidelberg Martin Kiaer Ricky M. Magalhaes Thomas Shinder Brien Posey Deb Shinder Justin Troutman Mitch Tulloch Robert J. Shimonski Blogs Message Boards Newsletter Signup RSS Feed Security Tests Services Email Security Services Managed security services Software Anti Virus Authentication / Smart cards Email Anti-Virus Email Content Security Email Encryption Encryption Endpoint Security Event Log Monitoring File integrity checkers Firewall security log analyzers Firewalls Group Policy Management Intrusion Detection Misc. Network Security Tools Network Auditing Patch Management Security Scanners VPNs
15 of 17 5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
Featured Products
Readers' Choice
Which is your preferred Email Anti Virus solution?
j k l m n BitDefender j k l m n GFI
Security MailSecurity j k l m n Kaspersky Security j k l m n Panda Security j k l m n Sophos Email Security j k l m n Sybari Antigen j k l m n Symantec AntiVirus j k l m n Trend Micro InterScan j k l m n VisNetic MailScan j k l m n Other please specify
Vote!
TechGenix Sites
ISAserver.org The No.1 ISA Server 2006 / 2004 / 2000 resource site. MSExchange.org The leading Microsoft Exchange Server 2007 / 2003 / 2000 resource site. WindowsNetworking.com Windows Server 2008 / 2003 & Windows Vista networking resource site. MSTerminalServices.org A leading Microsoft Terminal Services and Citrix resource site.
16 of 17
5/7/2008 10:55 AM
http://www.windowsecurity.com/articles/Configure-VPN-Connection-W...
Articles Authors Blogs Books ISA Server Articles Links Message Boards Newsletter RSS Security Tests Services Software White Papers About Us : Email us : Product Submission Form : Advertising Information WindowsSecurity.com is in no way affiliated with Microsoft Corp. *Links are sponsored by advertisers. Copyright 2008 TechGenix Ltd. All rights reserved. Please read our Privacy Policy and Terms & Conditions.
17 of 17
5/7/2008 10:55 AM