baeke.info :: Windows Server 2008: SSTP

About

You arrived at the weblog of Geert Baeke. I am a technology consultant for a company called Xylos (Belgium). I mostly work with Microsoft technologies such as Windows, Active Directory, Exchange, Sharepoint, MSCS, and more. I am also actively busy with VMware's products, focussing on VMware ESX.

Sections

Tutorials

Twitter

follow GeertBaeke at http://twitter.com

XBOX 360

RSS Newsfeeds

Main Page RSS

Windows RSS

Main Page » Technologies » Windows

Previous:	Windows Server 2008: Terminal Services and Desktop Experience
Next:	Windows Server 2008: Failover Clustering with iSCSI

Windows Server 2008: SSTP

by rastix on Fri 19 Oct 2007 06:48 PM CEST | Permanent Link | Cosmos

SSTP or Secure Socket Tunneling Protocol is a new type of VPN connection that uses port 443. SSTP is part of Windows Server 2008 RRAS (Routing and Remote Access). On the client side, you need Vista SP1.

The setup is very simple. Just setup RRAS on Windows Server 2008 and follow the wizard. When you setup the VPN, ports will be created for PPTP, L2TP and SSTP:

The RRAS wizard does not help you with the required certificate. It does not matter how you get the certificate (online CA, public CA, ...) but you need to make sure you store the certificate in the Computer store (Personal):

On the client side, make sure that the computer (not the user) recognizes the SSTP certificate. If you used your own CA, make sure that the CA certificate is in the Trusted Roots store of the computer. Then make a new VPN connection and select SSTP in the Networking tab:

That's it. You can now establish a VPN connection using only port 443 and forget about those typical NAT problems with IPSec VPNs or PPTP passthough issues.

Posted to:

Windows

Comments

Post a comment

No comments found.

Post comment:

	Receive comment notifications for this article
Subject:
Comment:

Comment verification:

Please enter the text you see inside the graphic to post your comment:

You are not currently logged in. If you would like your user information to be displayed with your comment, please enter your login information below.