SSTP VPN: Chilichonse chomwe mungafune kudziwa

James Davis

Mar 07, 2022 • Adalembetsedwa ku: Kufikira pa Webusaiti Mosadziwika • Mayankho otsimikiziridwa

SSTP ndiukadaulo wa eni omwe adapangidwa ndi Microsoft. Imayimira Secure Socket Tunneling Protocol ndipo idayambitsidwa koyamba mu Microsoft Vista. Tsopano, mutha kulumikizana mosavuta ndi SSTP VPN pamitundu yotchuka ya Windows (ndi Linux). Kukhazikitsa SSTP VPN Ubuntu kwa Windows sikovutanso. Mu bukhuli, tikuphunzitsani momwe mungakhazikitsire SSTP VPN Mikrotik ndikufaniziranso ndi ma protocol ena otchuka.

Gawo 1: Kodi SSTP VPN?

The Secure Socket Tunneling Protocol ndi njira yogwiritsiridwa ntchito kwambiri yomwe ingagwiritsidwe ntchito kupanga VPN yanu. Ukadaulo udapangidwa ndi Microsoft ndipo utha kutumizidwa ndi rauta yomwe mwasankha, monga Mikrotik SSTP VPN.

  • • Imagwiritsa ntchito Port 443, yomwe imagwiritsidwanso ntchito ndi kugwirizana kwa SSL. Chifukwa chake, imatha kuthetsa zovuta za firewall NAT zomwe zimachitika ku OpenVPN nthawi zina.
  • • SSTP VPN imagwiritsa ntchito satifiketi yotsimikizika yodzipatulira ndi kubisa kwa 2048-bit, ndikupangitsa kuti ikhale imodzi mwama protocol otetezeka kwambiri.
  • • Imatha kudutsa zozimitsa moto mosavuta ndikupereka chithandizo cha Perfect Forward Secrecy (PFS).
  • • M'malo IPSec, izo amathandiza kufala SSL. Izi zinapangitsa kuti anthu azingoyendayenda m'malo mongotumiza deta.
  • • The drawback yekha wa SSTP VPN ndi kuti sapereka thandizo kwa mafoni zipangizo monga Android ndi iPhone.

sstp vpn

Mu SSTP VPN Ubuntu ya Windows, doko 443 limagwiritsidwa ntchito ngati kutsimikizika kumachitika kumapeto kwa kasitomala. Pambuyo popeza satifiketi ya seva, kulumikizana kumakhazikitsidwa. Mapaketi a HTTPS ndi SSTP amasamutsidwa kuchokera kwa kasitomala, zomwe zimatsogolera ku zokambirana za PPP. Mawonekedwe a IP akaperekedwa, seva ndi kasitomala amatha kusamutsa mapaketi a data mosasunthika.

SSTP VPN Ubuntu

Gawo 2: Momwe mungakhazikitsire VPN ndi SSTP?

Kukhazikitsa SSTP VPN Ubuntu kapena Windows ndikosiyana pang'ono ndi L2TP kapena PPTP. Ngakhale ukadaulo umachokera ku Windows, mungafunike kukonza Mikrotik SSTP VPN. Mutha kugwiritsanso ntchito rauta ina iliyonse. Ngakhale, mu phunziro ili, taganizira za kukhazikitsidwa kwa SSTP VPN Mikrotik Windows 10. Njirayi ndi yofanana kwambiri ndi mawindo ena a Windows ndi SSTP VPN Ubuntu nawonso.

Khwerero 1: Kupeza Satifiketi Yotsimikizira Makasitomala

Monga mukudziwa, kuti tikhazikitse Mikrotik SSTP VPN, tifunika kupanga ziphaso zodzipatulira. Kuti muchite izi, pitani ku System> Zikalata ndikusankha kupanga satifiketi yatsopano. Apa, mutha kupereka dzina la DNS kukhazikitsa SSTP VPN. Komanso, tsiku lotha ntchito liyenera kukhala lovomerezeka kwa masiku 365 otsatira. Kukula kofunikira kuyenera kukhala 2048 bit.

create new client certification

Pambuyo pake, pitani ku tabu Yogwiritsa Ntchito Mafungulo ndikuyambitsa chizindikiro chokha cha crl ndi cert key. saina zosankha.

Sungani zosintha zanu podina batani la "Ikani". Izi zikuthandizani kuti mupange satifiketi ya seva ya SSTP VPN Mikrotik nayonso.

apply key usage settings

Khwerero 2: Pangani Setifiketi ya Seva

Momwemonso, muyenera kupanga satifiketi ya seva komanso. Perekani dzina loyenera ndikuyika kukula kwachinsinsi ku 2048. Kutalika kungakhale chirichonse kuchokera ku 0 mpaka 3650.

create server certification

Tsopano, pitani ku Key Kagwiritsidwe tabu ndikuwonetsetsa kuti palibe mwazosankha zomwe zayatsidwa.

disable key usage settings

Ingodinani pa "Ikani" batani ndi kutuluka zenera.

Gawo 3: Saina satifiketi

Kuti mupitilize, muyenera kusaina satifiketi yanu nokha. Ingotsegulani Satifiketi ndikudina "Sigina" njira. Perekani dzina la DNS kapena adilesi ya IP yokhazikika ndikusankha kusaina nokha satifiketi.

sign the certificate for sstp vpn

Mukasaina, simudzatha kusintha chilichonse pa satifiketi.

Khwerero 4: Saina satifiketi ya seva

Momwemonso, mutha kusainanso satifiketi ya seva. Mungafunike kiyi yowonjezera yachinsinsi kuti ikhale yotetezeka kwambiri.

sign the server certificate

Khwerero 5: Yambitsani seva

Tsopano, muyenera kuyatsa seva ya SSTP VPN ndikupanga Chinsinsi. Ingopitani ku zosankha za PPP ndikuyambitsa seva ya SSTP. Kutsimikizira kuyenera kukhala "mschap2". Komanso, zimitsani njira yotsimikizira satifiketi ya kasitomala musanasunge zosinthazi.

enable sstp server

Kuphatikiza apo, pangani Chinsinsi chatsopano cha PPP. Perekani dzina lanu lolowera, mawu achinsinsi ndi adilesi ya LAN ya rauta yanu ya Mikrotik. Komanso, mutha kufotokoza adilesi ya IP ya kasitomala wakutali pano.

Khwerero 6: Kutumiza satifiketi

Tsopano, tikufunika kutumiza satifiketi Yotsimikizira Makasitomala. Zisanachitike, onetsetsani kuti doko 443 ndi lotseguka.

Ingoyambitsani mawonekedwe a router yanu kamodzinso. Sankhani satifiketi ya CA ndikudina batani la "Export". Khazikitsani mawu achinsinsi otumiza kunja.

export client certificate

Zabwino! Tatsala pang'ono kufika. Pitani ku mawonekedwe a rauta ndi kukopera-mata chiphaso cha CA pa Windows drive.

paste the ca certification on windows drive

Pambuyo pake, mutha kuyambitsa wizard kuti mutenge Satifiketi Yatsopano. Sankhani makina am'deralo monga gwero.

import new certificate

Kuchokera apa, mutha kusakatula satifiketi yomwe mudapanga. Mukhozanso kuthamanga "certlm.msc" ndikuyika satifiketi yanu kuchokera pamenepo.

Khwerero 7: Pangani STP VPN

Pamapeto pake, mutha kupita ku Control Panel> Network and Settings ndikusankha kupanga VPN yatsopano. Perekani dzina la seva ndikuwonetsetsa kuti mtundu wa VPN walembedwa ngati SSTP.

create sstp vpn from windows network settings

Mukangopanga SSTP VPN, mutha kupita ku mawonekedwe a Mikrotik. Kuchokera apa, mutha kuwona Mikrotik SSTP VPN yomwe yawonjezedwa. Tsopano mutha kulumikiza ku SSTP VPN Mikrotik nthawi iliyonse.

view mikrotik sstp vpn

Gawo 3: SSTP vs. PPTP

Monga mukudziwa, SSTP ndi yosiyana kwambiri ndi PPTP. Mwachitsanzo, PPTP imapezeka pafupifupi pamapulatifomu onse otsogola (kuphatikiza Android ndi iOS). Kumbali ina, SSTP imachokera ku Windows.

PPTP imakhalanso yothamanga kwambiri poyerekezera ndi SSTP. Ngakhale, SSDP ndi njira yotetezeka kwambiri. Popeza zimakhazikika padoko lomwe silinatsekeredwe ndi ma firewall, limatha kudutsa mosavuta chitetezo cha NAT ndi ma firewall. Zomwezo sizingagwiritsidwe ntchito ku PPTP.

Ngati mukuyang'ana protocol ya VPN pazosowa zanu, mutha kupita ndi PPTP. Itha kukhala yotetezeka ngati SSTP, koma ndiyosavuta kuyikhazikitsa. Palinso ma seva a PPTP VPN omwe amapezeka kwaulere.

Gawo 4: SSTP vs. OpenVPN

Ngakhale SSTP ndi PPTP ndizosiyana, OpenVPN ndi SSTP zimagawana zofanana zambiri. Kusiyana kwakukulu ndikuti SSTP ndi ya Microsoft ndipo imagwira ntchito pamakina a Windows. Kumbali ina, OpenVPN ndiukadaulo wotsegulira ndipo imagwira ntchito pafupifupi pamapulatifomu onse akuluakulu (kuphatikiza ma desktop ndi mafoni).

SSTP imatha kudutsa mitundu yonse ya zozimitsa moto, kuphatikiza zomwe zimatsekereza OpenVPN. Mutha kukonza ntchito ya OpenVPN mosavuta pogwiritsa ntchito kubisa komwe mwasankha. Onse, OpenVPN ndi STTP ndi otetezeka kwambiri. Ngakhale, mutha kusintha OpenVPN malinga ndi kusintha kwa netiweki yanu, zomwe sizingapezeke mosavuta mu SSTP.

Kuphatikiza apo, OpenVPN imatha kuyendetsa UDP ndi maukonde. Kuti mukhazikitse OpenVPN, mungafunike pulogalamu ya chipani chachitatu pomwe kukhazikitsa SSTP VPN pa Windows ndikosavuta.

Tsopano mukadziwa zoyambira za SSTP VPN ndi momwe mungakhazikitsire Mikrotik SSTP VPN, mutha kukwaniritsa zomwe mukufuna. Ingopitani ndi protocol ya VPN yomwe mwasankha ndipo onetsetsani kuti mwasakatula motetezeka.

Mukhozanso Kukonda

hot article 0
Momwe Mungakhazikitsire VPN pa Windows 7 - Buku Loyamba
hot article 1
Njira 5 Zapamwamba Zoyang'anira VPN Kuti Muteteze ku Kulumikizidwa kwa VPN
James Davis

James Davis

ogwira Mkonzi

VPN

Ndemanga za VPN
VPN Top mindandanda
Njira za VPN
Home> Momwe mungachitire > Kufikira pa Webusayiti Yosadziwika > SSTP VPN: Chilichonse chomwe mungafune kudziwa
m