Download doc - VPN Radius

1. BNG IP CHO MNG DOMAIN CONTROLLER RADIUS SERVER

VPN SERVER RADIUS CLIENT

VPN CLIENT

IP: 172.16.1.2/24 GW: 172.16.1.1 DNS: 172.16.1.2

INTERNAL IP: 172.16.1.1 DNS: 172.16.1.2

EXTERNAL IP: 10.0.0.10 IP: 10.0.0.100

2. M HNH TRIN KHAI

Vmware0 Vmware0

Vmware1 Vmware1

3. CHUN B 1 My s dng Windows Server 2003, nng cp Domain Controller, vi Domain Name l : dtu.lab 1 My s dng Windows Server 2003, khng Join Domain. 1 My dng Windows XP.

Trong Domain Controller to: Group: VPN Users: u1, u2 Password: aA123456

a Users vo group VPN 4. CC BC THC HIN

Cu hnh Radius Server trn Domain Controller. Cu hnh VPN Client to Site v Radius Client trn my VPN Server. To kt ni, kim tra. 5. CHI TIT Nhim v o Radius l giao thc chng thc v tnh cc cho cc remote user o Radius kch hot s qun l tp trung nh chng thc user v pass o Radius client ng vai tr nh router, n gi yu cu v Radius server (chng thc v m ha thng qua vic s dng key ring) o VPN client bn ngoi quay s vo Radius , Radius client(VPN server) thng tin n Radius Server(Xc thc ci user ca VPN client ) o Domain controller dng xy mt h thng domain, xy dng 2 ti khon v 1 nhm vpn add 2 user vo nhm vpn o Radius Server cu hnh chng thc my VPN client o VPN Server cu hnh chng thc radius server

Tin hnho To ti khon vpn v add vo group

To nhm vpn v add 2 user u1 v u2 vo

Sau tin hnh thng cp cho domain

Raise 2 ln

Sau khi ng li o Cu hnh Radius Server trn Domain Controller Ci dch v chng thc radius Vo control panel >> add/remove>>add/remove components Chn network service >>internet authentication service

Cu hnh chinh sch bo mt

=>>Dng chng thc cc kt ni VPN Add group vpn vo

Chnh li ng dn lu file log (c th mc nh)

o Cu hnh VPN Client to Site v Radius Client trn my VPN Server

Next >>Yes

Cu hnh radius trn my vpn serve

IP chnh l ip radius server v pass chnh l pass lc cu hnh trn my radius server (aA123456)

Cu hnh tng t nh trn ta c

Cu hnh giao thc bo mt IPSEC L2TP cho cc kt ni vpn

OK-OK Sau restart server li

o Cu hnh VPN Client kt ni vo VPN Server, Kim tra.

Thnh cng

Sang my VPN Server kim tra ta thy c 1 user l u1 ng nhp By gi ta th tin hnh ng nhp vi giao thc bo mt IPSEC Nhn Disconect

Vo CMD g: ipconfig /all kim tra

Ping th my DC kim tra kt ni thnh cng