SSTP VPN: Zvese Zvaungade Kuziva

James Davis

Kurume 07, 2022 • Yakaiswa ku: Anonymous Web Access • Proven solutions

SSTP tekinoroji yemuridzi yakatanga kugadzirwa neMicrosoft. Inomirira Secure Socket Tunneling Protocol uye yakatanga kuunzwa muMicrosoft Vista. Iye zvino, unogona kubatana nyore nyore kune SSTP VPN pane dzakakurumbira shanduro dzeWindows (uye Linux). Kumisikidza SSTP VPN Ubuntu yeWindows haina kuomesesa zvakare. Mugwaro iri, tichakudzidzisa nzira yekumisikidza SSTP VPN Mikrotik uye woienzanisa nemamwe mapuroteni anozivikanwa zvakare.

Chikamu 1: Chii chinonzi SSTP VPN?

Iyo Yakachengeteka Socket Tunneling Protocol ndiyo inoshandiswa zvakanyanya tunneling protocol inogona kushandiswa kugadzira yako VPN. Iyo tekinoroji yakagadziridzwa neMicrosoft uye inogona kuisirwa nerouter yesarudzo yako, seMikrotik SSTP VPN.

  • • Inoshandisa Port 443, iyo inoshandiswawo neSSL connection. Naizvozvo, inogona kugadzirisa firewall NAT nyaya dzinoitika muOpenVPN dzimwe nguva.
  • • SSTP VPN inoshandisa chitupa chechokwadi chakatsaurirwa uye 2048-bit encryption, zvichiita kuti ive imwe yemitemo yakachengeteka zvikuru.
  • • Inogona kunzvenga firewall nyore uye kupa Perfect Forward Secrecy (PFS) rutsigiro.
  • • Panzvimbo yeIPSec, inotsigira SSL kutapurirana. Izvi zvakagonesa kutenderera pane kungonongedza-ku-kupfuudza kutapurirana kwedata.
  • • The chete drawback of SSTP VPN ndechokuti haina kupa tsigiro Mobile mano kufanana Android uye iPhone.

sstp vpn

MuSSTP VPN Ubuntu yeWindows, chiteshi 443 chinoshandiswa sekusimbisa kunoitika pakupera kwemutengi. Mushure mekuwana server setifiketi, kubatana kunotangwa. HTTPS uye SSTP mapaketi anobva aendeswa kubva kumutengi, zvichitungamira kune PPP nhaurirano. Kamwe IP interface yapihwa, sevha uye mutengi anogona kutamisa data pakiti.

SSTP VPN Ubuntu

Chikamu 2: Maitiro ekuseta VPN neSSTP?

Kumisikidza SSTP VPN Ubuntu kana Windows yakati siyanei neL2TP kana PPTP. Kunyangwe iyo tekinoroji ichibva kuWindows, waizoda kugadzirisa Mikrotik SSTP VPN. Iwe unogona kushandisa chero imwe router zvakare. Kunyange, muchidzidzo chino, tafunga nezvekugadzirisa kweSSTP VPN Mikrotik pa Windows 10. Maitiro acho akafanana kune dzimwe shanduro dzeWindows uye SSTP VPN Ubuntu zvakare.

Nhanho 1: Kuwana Chitupa cheMutengi Wechokwadi

Sezvaunoziva, kuitira kumisikidza Mikrotik SSTP VPN, tinoda kugadzira zvitupa zvakazvitsaurira. Kuti uite izvi, enda kuSystem> Zvitupa uye sarudza kugadzira chitupa chitsva. Pano, unogona kupa zita reDNS kumisikidza SSTP VPN. Zvakare, zuva rekupera basa rinofanira kunge riripo kwemazuva mazana matatu nemakumi matanhatu nemashanu anotevera. Saizi yakakosha inofanira kunge iri 2048 bit.

create new client certification

Mushure mezvo, enda kuKiyi yekushandisa tebhu uye gonesa chete crl sign uye kiyi cert. Saina sarudzo.

Sevha shanduko dzako nekudzvanya pakanzi "Shandisa". Izvi zvinokutendera iwe kugadzira sevha setifiketi yeSSTP VPN Mikrotik futi.

apply key usage settings

Danho 2: Gadzira Server Certificate

Nenzira imwecheteyo, iwe unofanirwa kugadzira chitupa cheserver zvakare. Ipe iyo zita rakakodzera uye isa kiyi saizi ku2048. Iyo nguva inogona kuva chero chinhu kubva ku0 kusvika 3650.

create server certification

Zvino, enda kuKushandisa Kiyi tebhu uye ita shuwa kuti hapana kana sarudzo inogoneswa.

disable key usage settings

Ingofa pa "Shandisa" bhatani uye buda pahwindo.

Danho rechitatu: Saina chitupa

Kuti uenderere mberi, unofanirwa kusaina chitupa chako wega. Ingovhura Chitupa uye tinya pane "Saina" sarudzo. Ipa zita reDNS kana iyo static IP kero uye sarudza kusaina wega chitupa.

sign the certificate for sstp vpn

Mushure mekusaina, hauzokwanisi kuita chero shanduko muchitupa.

Nhanho 4: Saina setifiketi yeserver

Nenzira imwecheteyo, iwe unogona kusaina server setifiketi zvakare. Ungangoda imwe kiyi yakavanzika kuti iite kuchengeteka zvakanyanya.

sign the server certificate

Nhanho 5: Bvisa sevha

Zvino, iwe unofanirwa kugonesa iyo SSTP VPN server uye kugadzira Chakavanzika. Ingoenda kune iyo PPP sarudzo uye gonesa iyo SSTP server. Kutendeseka kunofanira kungove "mschap2". Zvakare, dzima iyo verify client certificate sarudzo usati wachengeta shanduko idzi.

enable sstp server

Uyezve, gadzira itsva PPP Chakavanzika. Ipa zita rako rekushandisa, password uye kero yeLAN yeMikrotik router yako. Zvakare, unogona kutsanangura IP kero yemutengi ari kure pano.

Nhanho yechitanhatu: Kutumira kunze chitupa

Ikozvino, isu tinoda kutumira kunze kweClient Authentication chitupa. Pamberi, ita shuwa kuti port 443 yakavhurika.

Ingo vhura iyo interface yeRouter yako imwe nguva zvakare. Sarudza chitupa cheCA uye tinya bhatani re "Export". Seta yakasimba Export Passphrase.

export client certificate

Hukuru! Tave kutosvika. Enda kuRouter interface uye kopi-namira iyo CA certification paWindows drive.

paste the ca certification on windows drive

Mushure mezvo, unogona kuvhura wizard yeKupinza Nyowani Chitupa. Sarudza muchina wepanzvimbo semunobva.

import new certificate

Kubva pano, unogona kutarisa chitupa chawakagadzira. Iwe unogona zvakare kumhanya "certlm.msc" uye woisa chitupa chako kubva ipapo.

Danho rechinomwe: Gadzira iyo STP VPN

Pakupedzisira, unogona kuenda kuKudzora Panel> Network uye Zvirongwa uye sarudza kugadzira VPN itsva. Ipa zita revhavha uye ita shuwa kuti VPN mhando yakanyorwa seSSTP.

create sstp vpn from windows network settings

Kana iyo SSTP VPN yagadzirwa, unogona kuenda kuMikrotik interface. Kubva pano, unogona kuona iyo Mikrotik SSTP VPN iyo yakawedzerwa. Iwe unogona ikozvino kubatana kune iyi SSTP VPN Mikrotik chero nguva.

view mikrotik sstp vpn

Chikamu 3: SSTP vs. PPTP

Sezvaunoziva, SSTP yakasiyana chaizvo nePPTP. Semuenzaniso, PPTP inowanikwa kune angangoita ese anotungamira mapuratifomu (kusanganisira Android uye iOS). Kune rimwe divi, SSTP inowanikwa kuWindows.

PPTP zvakare inokurumidza tunneling protocol kana ichienzaniswa neSSTP. Zvisinei, STTP isarudzo yakachengeteka. Sezvo yakavakirwa pachiteshi chisina kumbovharwa nemafirewall, inogona kupfuura nyore kuchengetedzeka kweNAT uye firewall. Zvimwe chete hazvigone kushandiswa kuPPTP.

Kana iwe uchitsvaga VPN protocol kune zvaunoda iwe pachako, saka unogona kuenda nePPTP. Inogona kunge isina kuchengetedzeka seSSTP, asi zviri nyore kuseta. Kune zvakare inowanikwa mahara PPTP VPN maseva.

Chikamu 4: SSTP vs. OpenVPN

Nepo SSTP nePPTP zvakasiyana chaizvo, OpenVPN neSSTP vanogovana zvakawanda zvakafanana. Musiyano mukuru ndewekuti SSTP ndeyaMicrosoft uye inonyanya kushanda paWindows system. Kune rimwe divi, OpenVPN tekinoroji yakavhurika-sosi uye inoshanda pane angangoita ese makuru mapuratifomu (kusanganisira desktop uye nharembozha).

SSTP inogona kupfuura marudzi ese emafirewall, kusanganisira ayo anovharira OpenVPN. Unogona kugadzirisa nyore OpenVPN sevhisi nekushandisa encryption yesarudzo yako. Ose ari maviri, OpenVPN neSSTP akachengeteka zvakanyanya. Kunyangwe, iwe unogona kugadzirisa OpenVPN maererano neshanduko munetiweki yako, iyo isingawanikwe nyore muSSTP.

Pamusoro pezvo, OpenVPN inogona kutanha UDP nemanetiweki zvakare. Kuseta OpenVPN, ungada yechitatu-bato software uchimisikidza SSTP VPN paWindows zviri nyore.

Zvino kana iwe uchiziva izvo zvekutanga zveSSTP VPN uye maitiro ekuseta Mikrotik SSTP VPN, unogona kuzadzisa zvaunoda zviri nyore. Ingoenda neVPN protocol yesarudzo yako uye uve nechokwadi chekuti une yakachengeteka yekubhurawuza ruzivo.

Unogona Kudawo

hot article 0
Maitiro ekuseta VPN paWindows 7 - Yekutanga Gwaro
hot article 1
Yepamusoro 5 VPN Mutaridzi Dzimwe nzira dzekudzivirira kubva kuVPN Dimbura
James Davis

James Davis

vashandi Editor

VPN

VPN Ongororo
VPN Top rondedzero
VPN Maitiro-kuita
Home> Maitiro- ekuita > Kusazivikanwa Webhu Kuwanikwa > SSTP VPN: Zvese Zvaungade Kuziva