Easy-to-follow video tutorials help you learn software, creative, and business skills.Become a member
Alright, so here we are in our Advanced Server. We're going to configure VPN service. We're going to click on the name of the server, go to Settings, go to Services, and we're going to click on the VPN checkbox. When we do so, we're going tp click Save. That's going to open it up right over here. We're going to click on VPN. And this is our Settings. Now we have our Overview pane just like always, we have our Log pane just like always. Connections, who's connected to the server. Very straightforward stuff. We're using a lot of the same stuff over and over and over again in Server Admin, it makes it really easy to know where you are and get oriented once you get into a Service pane.
So here are the different Settings panes that we have available to us. The tabs are L2TP, PPTP, Client Information and Logging. We're going to start with L2TP. Actually, before we go with L2TP, I should tell you the port numbers that you have to have turned on for this stuff to work, okay? If you want your VPN to pass traffic, your firewall has to have 500 open for UDP, 1701 opened for UD, 1723 opened for TCP, and 4500 open for UDP. If you have those port numbers opened, you should be able to get both types of VPN traffic through your firewall.
So on L2TP we click Enable. Now when either of these two types of services, L2TP or PPTP start handing out VPN connections, they have to do something similar to network address translation in the process. They're going to hand out DHCP as well. And it's going to be something that's different from what's being handed out on the rest of your network for DHCP. So this has to be a range of addresses that do not conflict with the existing DHCP server on your network. That includes if you've set it up in Server Admin so that your local server actually provides DHCP. Whatever the DHCP server, is whatever range is being handed out, this has to be a different range, okay? I think I've said that clearly enough. We're going to type in a range on our network that is unique, and it's going to be a short range. I'm just going to go 75 to lets say 80. We could enable Load Balancing if we wanted to, which would be totally fine. We just click on the Enable Load Balancing, and we put the cluster IP address in here. This would be the IP address of any other server that you have set up to do L2TP VPN Service Clustering. If you don't have that set up anywhere else then you can just turn this off and not enable it.
Your PPP authentication here is going to take place either as part of the Directory Service or as a part of a Radius server. This is part of Apple's new Radius server stuff that they've got activated here. We don't have radius server set up and we're frankly not going to cover that in this title, so we're just going to set up to authenticate for Directory Services, and I'm going to choose to authenticate using Kerberos. It's secure, it's easy and because we've got our Open Directory Master set up, and because 10.5 client has Kerberos on all of it's local systems, Apples just really pushing Kerberos here. So, I'm going to go with Kerberos, and we're to give an IPSec authentication Shared Secret right here. You're going to type in something here and it's going to be a Shared Secret that you're going to give out to clients that want to connect up to your L2TP over IPSec VPN server.
So there's our Shared Secret all typed in and ready to go. Next movie, we will configure PPTP.
Get unlimited access to all courses for just $25/month.Become a member
61 Video lessons · 99910 Viewers
56 Video lessons · 113013 Viewers
71 Video lessons · 81845 Viewers
131 Video lessons · 39281 Viewers
Access exercise files from a button right under the course name.
Search within course videos and transcripts, and jump right to the results.
Remove icons showing you already watched videos if you want to start over.
Make the video wide, narrow, full-screen, or pop the player out of the page into its own window.
Click on text in the transcript to jump to that spot in the video. As the video plays, the relevant spot in the transcript will be highlighted.