How to Set Up a VPN Server on Windows Server 2022 KVM VPS Print

Setting up a VPN server on a Windows Server 2022-based KVM VPS offers secure remote access, improves privacy, and provides secure browsing capabilities. This guide will walk you through the process step-by-step.

Prerequisites:

• KVM VPS running Windows Server 2022.
• Administrator access to the VPS.
• Basic networking knowledge and familiarity with Windows Server management.

Step-by-Step Setup Guide:

1. Connect to Your VPS

• Use Remote Desktop Protocol (RDP) to connect to your Windows Server 2022 VPS.
• Log in using your administrator account credentials.

2. Install the Remote Access Role

1. Open Server Manager.
2. Select Manage > Add Roles and Features.
3. Choose Role-based or feature-based installation and click Next.
4. Select the target server and click Next.
5. On the Select server roles screen, check Remote Access and click Next.
6. Click Next until you reach the Role Services page.
7. Check DirectAccess and VPN (RAS) and click Next.
8. Complete the installation by clicking Install and waiting for the process to finish.

3. Configure Routing and Remote Access (RRAS)

1. Open Server Manager and navigate to Tools > Routing and Remote Access.
2. Right-click on your server’s name and select Configure and Enable Routing and Remote Access.
3. In the wizard:
   • Select Custom configuration.
   • Choose VPN access and click Next.
   • Click Finish.
4. Right-click on the server again and select Start service.

4. Allow VPN Ports Through the Firewall

• Make sure your VPS firewall settings allow incoming traffic on port 1723 (used for PPTP VPN) and port 47 (for the GRE protocol).

5. Configure IP Address Assignment for VPN Clients

1. In the Routing and Remote Access window, right-click on your server and choose Properties.
2. Go to the IPv4 tab.
3. Select Static address pool and click Add.
4. Enter a range of IP addresses to be assigned to VPN clients (e.g., 192.168.100.1 to 192.168.100.20).
5. Click OK to save the settings.

6. Create a User Account for VPN Access

1. Open Computer Management (accessible via Server Manager > Tools).
2. Click Local Users and Groups > Users.
3. Right-click Users and select New User.
4. Enter a username and password for the new user. Uncheck User must change password at next logon.
5. Click Create.
6. Right-click on the newly created user, go to Properties, select the Dial-in tab, and set Network Access Permissionto Allow access.

7. Connect to Your VPN from a Client Device

• On a client device (e.g., a PC, laptop, or mobile device), set up a new VPN connection.
• Use the public IP address of your KVM VPS and the user credentials you created in the previous step.

Common Troubleshooting Tips:

• Ensure the necessary VPN ports are not blocked by your VPS provider’s firewall or internal firewall settings.
• Verify that you are using the correct user credentials for VPN access.
• Double-check your network interface and routing configuration to avoid conflicts.