SSTP VPN: ʻO nā mea a pau āu e makemake ai e ʻike
Mar 07, 2022 • Waiho ʻia i: Anonymous Web Access • Nā hoʻonā i hōʻoia ʻia
ʻO SSTP kahi ʻenehana waiwai i hoʻomohala mua ʻia e Microsoft. Kū ia no Secure Socket Tunneling Protocol a ua hoʻokomo mua ʻia ma Microsoft Vista. I kēia manawa, hiki iā ʻoe ke hoʻopili maʻalahi i kahi SSTP VPN ma nā mana kaulana o Windows (a me Linux). ʻAʻole paʻakikī loa ka hoʻonohonoho ʻana iā SSTP VPN Ubuntu no Windows. Ma kēia alakaʻi, e aʻo mākou iā ʻoe pehea e hoʻonohonoho ai i ka SSTP VPN Mikrotik a hoʻohālikelike iā ia me nā protocol kaulana ʻē aʻe.
Mahele 1: He aha ka SSTP VPN?
ʻO ka Secure Socket Tunneling Protocol kahi protocol tunneling i hoʻohana nui ʻia e hiki ke hoʻohana ʻia e hana i kāu VPN ponoʻī. Ua hoʻomohala ʻia ka ʻenehana e Microsoft a hiki ke kau ʻia me ke alalai āu e koho ai, e like me Mikrotik SSTP VPN.
- • Hoʻohana ia i ka Port 443, i hoʻohana pū ʻia e ka pilina SSL. No laila, hiki iā ia ke hoʻoholo i nā pilikia firewall NAT e kū nei ma OpenVPN i kekahi manawa.
- • Hoʻohana ka SSTP VPN i kahi palapala hōʻoia i hoʻolaʻa ʻia a me kahi encryption 2048-bit, e lilo ia i hoʻokahi o nā protocol palekana loa.
- • Hiki iā ia ke kāpae i nā pā ahi a hāʻawi i kahi kākoʻo Perfect Forward Secrecy (PFS).
- • Ma kahi o IPSec, kākoʻo ia i ka hoʻoili SSL. Ua hiki kēia i ka hele ʻana ma mua o ka hoʻouna ʻana i ka ʻikepili i kahi kikoʻī.
- • ʻO ka drawback wale nō o SSTP VPN ʻaʻole ia e hāʻawi i ke kākoʻo no nā polokalamu kelepona e like me Android a me iPhone.
Ma SSTP VPN Ubuntu no Windows, hoʻohana ʻia ke awa 443 e like me ka hōʻoia ʻana i ka hopena o ka mea kūʻai. Ma hope o ka loaʻa ʻana o ka palapala kikowaena, hoʻokumu ʻia ka pilina. Hoʻololi ʻia nā ʻeke HTTPS a me SSTP mai ka mea kūʻai aku, e alakaʻi ana i ke kūkākūkā PPP. Ke hāʻawi ʻia kahi kikowaena IP, hiki i ke kikowaena a me ka mea kūʻai aku ke hoʻololi maʻalahi i nā ʻeke ʻikepili.
Mahele 2: Pehea e hoʻonohonoho ai i ka VPN me SSTP?
ʻO ka hoʻonohonoho ʻana i ka SSTP VPN ʻo Ubuntu a i ʻole Windows he ʻokoʻa iki mai L2TP a i ʻole PPTP. ʻOiai ʻo ka ʻenehana no Windows, pono ʻoe e hoʻonohonoho iā Mikrotik SSTP VPN. Hiki iā ʻoe ke hoʻohana i kekahi router ʻē aʻe kekahi. ʻOiai, ma kēia kumu aʻo, ua noʻonoʻo mākou i ka hoʻonohonoho ʻana o SSTP VPN Mikrotik ma Windows 10. Ua like ke kaʻina hana no nā mana ʻē aʻe o Windows a me SSTP VPN Ubuntu pū kekahi.
KaʻAnuʻu Hana 1: Loaʻa i ka palapala hōʻoia no ka Client Authentication
E like me kāu e ʻike ai, i mea e hoʻonohonoho ai iā Mikrotik SSTP VPN, pono mākou e hana i nā palapala hoʻolaʻa. No ka hana ʻana i kēia, hele i System> Certificates a koho e hana i kahi palapala hōʻoia hou. Maanei, hiki iā ʻoe ke hāʻawi i ka inoa DNS e hoʻonohonoho SSTP VPN. Eia kekahi, pono ka lā pau no nā lā 365 e hiki mai ana. ʻO ka nui kī he 2048 bit.
Ma hope, e hele i ka Key Usage tab a hiki i ka hōʻailona crl a me ka palapala kī. hōʻailona koho.
E mālama i kāu mau hoʻololi ma ke kaomi ʻana i ke pihi "Apply". E ʻae kēia iā ʻoe e hana i ka palapala kikowaena no SSTP VPN Mikrotik pū kekahi.
KaʻAnuʻu Hana 2: E hana i ka Server Certificate
Ma ke ala like, pono ʻoe e hana i kahi palapala hōʻoia no ke kikowaena pū kekahi. Hāʻawi iā ia i ka inoa kūpono a hoʻonoho i ka nui kī i 2048. Hiki ke lōʻihi mai 0 a 3650.
I kēia manawa, e hele i ka Key Usage tab a e hōʻoia ʻaʻole hiki ke koho ʻia kekahi o nā koho.
E kaomi wale i ka pihi "Apply" a haʻalele i ka puka makani.
KaʻAnuʻu Hana 3: E kau inoa i ka palapala hōʻoia
I mea e hoʻomau ai, pono ʻoe e kau inoa iā ʻoe iho i kāu palapala hōʻoia. E wehe wale i ka palapala hōʻoia a kaomi i ke koho "Sign". Hāʻawi i ka inoa DNS a i ʻole ka helu IP static a koho iā ʻoe iho e kau inoa i ka palapala hōʻoia.
Ma hope o ke kau inoa ʻana, ʻaʻole hiki iā ʻoe ke hoʻololi i ka palapala hōʻoia.
KaʻAnuʻu Hana 4: E kakau inoa i ka palapala kikowaena
Ma ke ala like, hiki iā ʻoe ke kau inoa i ka palapala kikowaena pū kekahi. Pono paha ʻoe i kahi kī pilikino hou aʻe i mea e palekana ai.
KaʻAnuʻu Hana 5: E ho'ā i ke kikowaena
I kēia manawa, pono ʻoe e ʻae i ka server SSTP VPN a hana i kahi huna. E hele wale i nā koho PPP a hiki i ka server SSTP. ʻO ka hōʻoia "mschap2" wale nō. Eia kekahi, hoʻopau i ke koho palapala hōʻoia mea kūʻai ma mua o ka mālama ʻana i kēia mau hoʻololi.
Eia kekahi, hana i kahi huna PPP hou. E hāʻawi i kāu inoa inoa, ʻōlelo huna a me ka helu LAN o kāu router Mikrotik. Eia kekahi, hiki iā ʻoe ke kuhikuhi i ka helu IP o ka mea kūʻai mamao ma aneʻi.
KaʻAnuʻu Hana 6: Ka lawe ʻana i ka palapala hōʻoia
I kēia manawa, pono mākou e hoʻokuʻu aku i ka palapala hōʻoia Client. Ma mua, e hōʻoia i ka wehe ʻana o ke awa 443.
E hoʻomaka wale i ka interface o kāu Router i hoʻokahi manawa. E koho i ka palapala CA a kaomi ma ka pihi "Export". E hoʻopaʻa i kahi huaʻōlelo hoʻolaha ikaika.
Nui! Kokoke kakou. E hele i ka interface Router a kope i ka palapala hōʻoia CA ma Windows drive.
Ma hope, hiki iā ʻoe ke hoʻomaka i kahi wizard e lawe mai i ka palapala hōʻoia hou. E koho i ka mīkini kūloko e like me ke kumu.
Mai ʻaneʻi, hiki iā ʻoe ke nānā i ka palapala hōʻoia āu i hana ai. Hiki iā ʻoe ke holo "certlm.msc" a hoʻokomo i kāu palapala hōʻoia mai laila.
KaʻAnuʻu Hana 7: E hana i ka SSTP VPN
I ka hopena, hiki iā ʻoe ke hele i ka Control Panel> Network and Settings a koho e hana i kahi VPN hou. Hāʻawi i ka inoa kikowaena a e hōʻoia i ka helu ʻana o ka ʻano VPN ma SSTP.
Ke hana ʻia ka SSTP VPN, hiki iā ʻoe ke hele i ka interface Mikrotik. Mai ʻaneʻi, hiki iā ʻoe ke nānā i ka Mikrotik SSTP VPN i hoʻohui ʻia. Hiki iā ʻoe ke hoʻohui i kēia SSTP VPN Mikrotik i kēlā me kēia manawa.
Mahele 3: SSTP vs. PPTP
E like me kāu e ʻike ai, ʻokoʻa loa ka SSTP mai ka PPTP. No ka laʻana, loaʻa ka PPTP no ka aneane o nā papa kuhikuhi āpau (me Android a me iOS). Ma ka ʻaoʻao ʻē aʻe, he kamaʻāina ʻo SSTP i Windows.
ʻO ka PPTP kahi protocol tunneling wikiwiki loa ke hoʻohālikelike ʻia me SSTP. ʻOiai, ʻoi aku ka palekana o ka SSTP. No ka mea ua hoʻokumu ʻia ia ma ke awa ʻaʻole i ālai ʻia e nā pā ahi, hiki iā ia ke kāpae i ka palekana NAT a me nā pā ahi. ʻAʻole hiki ke hoʻohana like i ka PPTP.
Inā ʻoe e ʻimi nei i kahi protocol VPN no kāu pono pilikino, a laila hiki iā ʻoe ke hele me PPTP. ʻAʻole paʻa ia e like me SSTP, akā maʻalahi ka hoʻonohonoho. Aia pū kekahi mau kikowaena PPTP VPN.
Mahele 4: SSTP vs. OpenVPN
ʻOiai he ʻokoʻa ka SSTP a me PPTP, OpenVPN a me SSTP kaʻana like i nā mea like. ʻO ka ʻokoʻa nui ʻo ia ka SSTP nona Microsoft a hana nui ma nā ʻōnaehana Windows. Ma ka ʻaoʻao ʻē aʻe, ʻo OpenVPN kahi ʻenehana open-source a hana ma kahi kokoke i nā paepae nui (me ka desktop a me nā ʻōnaehana kelepona).
Hiki i ka SSTP ke kāʻalo i nā ʻano pā ahi āpau, me nā mea e ālai iā OpenVPN. Hiki iā ʻoe ke hoʻonohonoho maʻalahi i ka lawelawe OpenVPN ma o ka hoʻopili ʻana i ka hoʻopunipuni o kāu koho. ʻO nā mea ʻelua, OpenVPN a me SSTP paʻa loa. ʻOiai, hiki iā ʻoe ke hana i ka OpenVPN e like me ka hoʻololi ʻana i kāu pūnaewele, ʻaʻole hiki ke maʻalahi i ka SSTP.
Eia hou, hiki i ka OpenVPN ke hoʻoheheʻe i ka UDP a me nā pūnaewele pū kekahi. No ka hoʻonohonoho ʻana iā OpenVPN, pono ʻoe i kahi polokalamu ʻaoʻao ʻekolu a ʻoi aku ka maʻalahi o ka hoʻonohonoho SSTP VPN ma Windows.
I kēia manawa ke ʻike ʻoe i nā kumu o SSTP VPN a pehea e hoʻonohonoho ai iā Mikrotik SSTP VPN, hiki iā ʻoe ke hoʻokō maʻalahi i kāu mau koi. E hele wale me ka protocol VPN o kāu koho a e hōʻoia e loaʻa kahi ʻike mākaʻikaʻi palekana.
VPN
- Nā Manaʻo VPN
- VPN Nā papa inoa kiʻekiʻe
- VPN Pehea
James Davis
Lunahooponopono limahana