1. BNG IP CHO MNG DOMAIN CONTROLLER RADIUS SERVER
VPN SERVER RADIUS CLIENT
VPN CLIENT
IP: 172.16.1.2/24 GW: 172.16.1.1 DNS: 172.16.1.2
INTERNAL IP: 172.16.1.1 DNS: 172.16.1.2
EXTERNAL IP: 10.0.0.10 IP: 10.0.0.100
2. M HNH TRIN KHAI
Vmware0 Vmware0
Vmware1 Vmware1
3. CHUN B 1 My s dng Windows Server 2003, nng cp Domain
Controller, vi Domain Name l : dtu.lab 1 My s dng Windows Server
2003, khng Join Domain. 1 My dng Windows XP.
Trong Domain Controller to: Group: VPN Users: u1, u2 Password:
aA123456
a Users vo group VPN 4. CC BC THC HIN
Cu hnh Radius Server trn Domain Controller. Cu hnh VPN Client to
Site v Radius Client trn my VPN Server. To kt ni, kim tra. 5. CHI
TIT Nhim v o Radius l giao thc chng thc v tnh cc cho cc remote user
o Radius kch hot s qun l tp trung nh chng thc user v pass o Radius
client ng vai tr nh router, n gi yu cu v Radius server (chng thc v
m ha thng qua vic s dng key ring) o VPN client bn ngoi quay s vo
Radius , Radius client(VPN server) thng tin n Radius Server(Xc thc
ci user ca VPN client ) o Domain controller dng xy mt h thng
domain, xy dng 2 ti khon v 1 nhm vpn add 2 user vo nhm vpn o Radius
Server cu hnh chng thc my VPN client o VPN Server cu hnh chng thc
radius server
Tin hnho To ti khon vpn v add vo group
To nhm vpn v add 2 user u1 v u2 vo
Sau tin hnh thng cp cho domain
Raise 2 ln
Sau khi ng li o Cu hnh Radius Server trn Domain Controller Ci
dch v chng thc radius Vo control panel >>
add/remove>>add/remove components Chn network service
>>internet authentication service
Cu hnh chinh sch bo mt
=>>Dng chng thc cc kt ni VPN Add group vpn vo
Chnh li ng dn lu file log (c th mc nh)
o Cu hnh VPN Client to Site v Radius Client trn my VPN
Server
Next >>Yes
Cu hnh radius trn my vpn serve
IP chnh l ip radius server v pass chnh l pass lc cu hnh trn my
radius server (aA123456)
Cu hnh tng t nh trn ta c
Cu hnh giao thc bo mt IPSEC L2TP cho cc kt ni vpn
OK-OK Sau restart server li
o Cu hnh VPN Client kt ni vo VPN Server, Kim tra.
Thnh cng
Sang my VPN Server kim tra ta thy c 1 user l u1 ng nhp By gi ta
th tin hnh ng nhp vi giao thc bo mt IPSEC Nhn Disconect
Vo CMD g: ipconfig /all kim tra
Ping th my DC kim tra kt ni thnh cng
