Step by Step How to Install and Configure VPN in Windows Server 

2016

Installing and configuring a VPN server using Windows Server 2016 is easy way. By following
the guidance in this article, a VPN server can be implemented in just a few minutes.

VPN provides secure access to organizations’ internal data and applications to clients and
devices that are using the Internet.

To properly implement and support a VPN environment within your organization, you must
understand how to select a suitable tunnelling protocol, configure VPN authentication,
and configure the server role to support your chosen configuration.

For this demo purposes, i will be using 2 VM, and 1 Windows 10 client VM which is all running
in Hyper-V.

Lets get started  VPN configuration.

01 – lets verify the network configuration for VPN Server. (Please Refer to the Pictures)

1 – VPN Server Require 2 NIC :

 Ethernet 1 : LAN
 Ethernet 2 : Internet

Ethernet 1 : LAN

Página 1 de 26
Ethernet 2 : Internet 

2 – Windows 10 Client.

 Require 1 NIC :
o Ethernet 1 : Internet

Página 2 de 26
02 – Creating VPNUsers OU & User in Active Directory.

1 – Create a new OU – In the New Object – Organizational Unit dialog box, in the Name box,
type VPNUsers, and then click OK.

Página 3 de 26
2 – In the Active Directory Users and Computers console, expand Windows.ae, right-
click VPNUsers OU, click New, and then click User.

Página 4 de 26
3 – right-click user, Properties, Allow Access enabled for Remote Access to connect to your
VPN Server. and Okay. (Please Refer to the Pictures)

Página 5 de 26
03 – Installation

1 – open your Server Manager and click on Add Roles and Features.

Página 6 de 26
2 – click on Next.

3 – Now select Role-based or feature-based installation option and click on Next.

Página 7 de 26
4 – Now select desired server you’d like to install Routing and Remote Access on.

5 – From the Roles lists select Remote Access and click on Next.

Página 8 de 26
6 – Click Next, no additional features required at this point.

7 –  Just click on Next.

Página 9 de 26
8 – In next tab you need to select DirectAccess and VPN (RAS), Click Add Features in the
popup window.

Página 10 de 26
9 – On confirmation page click Install to begin.

10 – After installation process is finished, click on Open the Getting Started Wizard.

Página 11 de 26
11 – In this tab press Deploy VPN only.

Página 12 de 26
04 – Configuration

1 – Right click on your server and choose Configure and Enable Routing and Remote Access.

2 – Click on Next.

Página 13 de 26
3 – On the new wizard select Remote Access (dial-up or VPN).

4 – On the next page select VPN.

Página 14 de 26
5 – Here select network adapter that connects your server to the Internet.

6 – Here select network adapter that connects your server to the VPN Clients.

Página 15 de 26
7 – Here you can choose the method of distribution for IP addresses – via DHCP or manually.
Select the second way.

8 – In this tab press New.

Página 16 de 26
9 – In popup window specify range of IP addresses, press OK, return to previous tab and click
on Next.

10 – In this tab you can choose the method of authentification. Select Routing and Remote
Access.

Página 17 de 26
11 – Press Finish. and Click Okay, Now configuration is finished.

Página 18 de 26
12 – Next, in the Routing and Remote Access console, expand DC-CLOUD, right-click ports, click
Properties.

Página 19 de 26
13 – Verify that 128 ports exist for SSTP, IKEv2, PPTP, and L2TP, then double-click WAN
Miniport (SSTP). Maximum ports box, type 5, and then click OK, Routing and Remote Access
message box, click Yes.

Página 20 de 26
14 – Repeat the same step no:13 for IKEv2, PPTP, and L2TP,  then click OK.

05 – Client Connectivity Testing

1 – On the Windows 10 client PC, open Network and Sharing Center, then click Set up a new
connection or network.

Página 21 de 26
2 – Next, on the Choose a connection option interface, click Connect to a workplace, and then
click Next.

3 – On the How do you want to connect? interface, click Use my Internet connection (VPN).

Página 22 de 26
4 – On the Connect to a Workplace interface, click I’ll set up an Internet connection later.

5 – In the Internet address box, type 131.107.0.10 (DC-CLOUD VPN Server IP Address).

— In the Destination name box, type NewHelpTech VPN connection, select Allow other people
to use this connection checkbox, and then click Create. —

Página 23 de 26
6 – Next, right click NewHelpTech VPN connection, and then click Connect.

Página 24 de 26
7 – In the sign-in dialog box, type the domain user from VPNUsers OU Name Sifad and box,
type Password, and then click OK.

8 – Verify that you are connected to Windows by using a PPTP connection, right click
NewHelpTech VPN connection, and then click Status.

Página 25 de 26
Orait, that all for now, we’ve connected to NewHelpTech VPN connection successfully.

Summary

Implementing a client-based VPN solution for secure remote access using Windows Server
2016 has many advantages over dedicated and proprietary security appliances. Windows-
based VPN servers are easy to manage, cost effective, and offer greater deployment flexibility.
However, at this point additional configuration is required to properly secure incoming
connections.

that’s all for now.., any Doubts type a commend.. 

Página 26 de 26