Using a VPN on your Windows Server has a lot of advantages for all parties included and it allows users in a small environment access to remote clients or firewalls to Windows Server. We made sure to explain how to install and set up a Virtual Private Network on Windows Server 2019.
Steps to install VPN on Windows Server 2019
Step 1 – Start by installing the Remote Access via Server Manager
In order to establish a VPN server in a small environment, we need to start with installing the Remote Access. You can use either Server Manager or Power Shell to install and configure Remote Access.
Here are the steps:
- Open Server Manager.
- Choose Manage > Add Roles and Features Wizard.
- Check the “Remote Access” box and click Next.
- Under Role Services, check the “DirectAccess and VPN (RAS)” box, and click Next.
- Finally, click Install. This might take some time and it requires a reboot of the server.
Step 2 – Move to VPN installation and configuration setup
After the installation of the Remote Access for Windows Server 2019, we can safely install and configure the VPN server. This is done through the dedicated Wizard.
Follow these steps to install and configure the VPN server on your Windows Server 2019:
- Click on the “Open the Getting Started Wizard”.
- Choose “Deploy VPN only“.
- In the Routing and Remote Access Management Console, right-click on the Server name and choose to Configure and Enable Routing and Remote Access from the contextual menu.
- Choose “Custom configuration” and click Next.
- Select VPN access and, finally, start the service.
Step 3 – Configure VPN access
Finally, the only thing remaining is to configure the VPN User and Network Access. This requires opening Firewall ports and forwarding them to the Window Server.
- READ ALSO: How to Run an FTP Server on Windows 10, 8.1
These are the ports you need to open based on the protocols:
- For PPTP: 1723 TCP and Protocol 47 GRE (also known as PPTP Pass-through)
- For L2TP over IPSEC: 1701 TCP and 500 UDP
- For SSTP: 443 TCP
In case you don’t have the DHCP server, you can always set a static IPv4 address pool. This can be done by following the steps below:
- Firstly, make sure all users have Remote access enabled.
- Open Properties of your VPN server.
- Click on the IPv4 tab and enable “Static address pool”.
- Click Add and add the same static IP address from the same Server subnet in order for users to be able to access it.
That’s it. In case you have any questions or suggestions, feel free to ask us in the comments section below.
RELATED STORIES YOU SHOULD CHECK OUT: