Overview

Introduction

Welcome to the VPN Technologies and Services Practice Lab. In this module, you will be provided with the instructions and devices needed to develop your hands-on skills.

Learning Outcomes

In this module, you will complete the following exercises:

  • Exercise 1 - Install VPN Server
  • Exercise 2 - Configure VPN Server Properties
  • Exercise 3 - Using PPTP
  • Exercise 4 - Using L2TP and IPSec

After completing this lab, you will be able to:

  • Install Routing and Remote Access
  • Configure the system settings of Routing Remote Access Server
  • Explain the use of Point to Point Tunnelling Protocol (PPTP)
  • Use L2TP to create an IPsec connection

Exam Objectives

The following exam objectives are covered in this lab:

  • N10-007 3.2: Compare and contrast business continuity and disaster recovery concepts (Available Concepts, Clustering)
  • N10-007 3.2: Compare and contrast business continuity and disaster recovery concepts (Fault Tolerance, High Availability, Load Balancing)

Lab Duration

It will take approximately 1 hour and 20 minutes to complete this lab.

Exercise 1 - Install VPN Server

Windows Server 2016 includes a network service called Routing and Remote Access Services (RRAS) that supports remote user or site-to-site connectivity by using virtual private networks (VPN) or dial-up connections.

VPN servers are usually found on or near the network edge so that external clients can connect to the internal network. In this exercise, you will install RRAS on the PLABSA01 device running Windows Server 2016 which will play the role of the remote VPN server. You will also configure a remote workstation as a VPN client that will dial-in to RRAS.

Learning Outcomes

After completing this exercise, you will be able to:

  • Install Routing and Remote Access

Exercise 2 - Configure VPN Server Properties

After installing Routing and Remote Access feature in Windows on the PLABSA01 device, you will now configure its system settings.

In this exercise, you will configure the system settings of Routing Remote Access Server by setting up the VPN ports, allowing firewall ports to accept incoming connections. You will next give permission to a domain user to dial-in to the server using Active Directory Users and Computers.

Learning Outcomes

After completing this exercise, you will be able to:

  • Configure the system settings of Routing Remote Access Server

Exercise 3 - Using PPTP

Point to Point Tunnelling Protocol (PPTP) is a VPN protocol that requires username and password to authenticate user accounts that dial-in to a VPN server. This protocol is widely supported by a variety of vendors because of its simplicity and ease of implementation. PPTP can be a security risk however if the user name and password are compromised for a variety of reasons.

In this exercise, you will set up a remote workstation to dial-in to the VPN server. The server that will play the role of the remote workstation will be the PLABWEB01 server.

Learning Outcomes

After completing this exercise, you will be able to:

  • Explain the use of Point to Point Tunnelling Protocol (PPTP)

Exercise 4 - Using L2TP to Create an IPsec Connection

Layer 2 Tunneling Protocol (L2TP) is a VPN protocol that provides restrictive authentication as this requires machine certificates issued to VPN server and client by a trusted Certification Authority. The certificate must be installed on VPN server and client for a VPN session to be established successfully. The machine certificate provides an additional layer of security in addition to the mandatory user name and password that must be entered on a VPN client when initiating a connection to VPN server.

In this exercise, you will enable L2TP on PLABSA01 and PLABWEB01 devices. This, in turn, will allow for the application of an IPsec policy to be implemented.

Learning Outcomes

After completing this exercise, you will be able to:

  • Use L2TP to create an IPsec connection

Comprehensive Learning

See the full benefits of our immersive learning experience with interactive courses and guided career paths.