How to install a Virtual Private Network on Windows Server 2019


Aleksandar Ognjanovic
by Aleksandar Ognjanovic
Editor
Loading Comments
Affiliate Disclosure

vpn on windows server 2019 featured

Using a VPN on your Windows Server has a lot of advantages for all parties included and it allows users in a small environment access to remote clients or firewalls to Windows Server. We made sure to explain how to install and set up a Virtual Private Network on Windows Server 2019.

Steps to install VPN on Windows Server 2019

Step 1 – Start by installing the Remote Access via Server Manager

In order to establish a VPN server in a small environment, we need to start with installing the Remote Access. You can use either Server Manager or Power Shell to install and configure Remote Access.

Here are the steps:

  1. Open Server Manager.
  2. Choose Manage > Add Roles and Features Wizard.
  3. Check the “Remote Access” box and click Next.install remote access windows server 2019
  4. Under Role Services, check the “DirectAccess and VPN (RAS)” box, and click Next.
  5. Finally, click Install. This might take some time and it requires a reboot of the server.

Step 2 – Move to VPN installation and configuration setup

After the installation of the Remote Access for Windows Server 2019, we can safely install and configure the VPN server. This is done through the dedicated Wizard.

Follow these steps to install and configure the VPN server on your Windows Server 2019:

  1. Click on the “Open the Getting Started Wizard”.Open the Getting Started Wizard Windows Server 2019
  2. Choose “Deploy VPN only“.
  3. In the Routing and Remote Access Management Console, right-click on the Server name and choose to Configure and Enable Routing and Remote Access from the contextual menu.
  4. Choose “Custom configuration” and click Next.
  5. Select VPN access and, finally, start the service.

Step 3 – Configure VPN access

Finally, the only thing remaining is to configure the VPN User and Network Access. This requires opening Firewall ports and forwarding them to the Window Server.

These are the ports you need to open based on the protocols:

  • For PPTP: 1723 TCP and Protocol 47 GRE (also known as PPTP Pass-through)
  • For L2TP over IPSEC: 1701 TCP and 500 UDP
  • For SSTP: 443 TCP

In case you don’t have the DHCP server, you can always set a static IPv4 address pool. This can be done by following the steps below:

  1. Firstly, make sure all users have Remote access enabled.
  2. Open Properties of your VPN server.
  3. Click on the IPv4 tab and enable “Static address pool”.Static address pool vpn on windows server 2019
  4. Click Add and add the same static IP address from the same Server subnet in order for users to be able to access it.

That’s it. In case you have any questions or suggestions, feel free to ask us in the comments section below.

RELATED STORIES YOU SHOULD CHECK OUT:

Was this page helpful?
Thanks for letting us know!
Get the most from your tech with our daily tips
Tell us why!