1
00:00:02,140 --> 00:00:03,130
All right, moving on,

2
00:00:03,130 --> 00:00:07,970
let's get to work on our VPN server. The VPN server, or Routing

3
00:00:07,970 --> 00:00:10,570
and Remote Access server, or RRAS server,

4
00:00:10,570 --> 00:00:13,560
you will hear it defined as all of those things or any of

5
00:00:13,560 --> 00:00:17,670
those things. RRAS is used to provide VPN services for our

6
00:00:17,670 --> 00:00:20,640
device and user‑based connections.

7
00:00:20,640 --> 00:00:24,450
And if you recall from our conversations in module three,

8
00:00:24,450 --> 00:00:28,860
there are a number of different VPN protocols supported by RRAS. We're

9
00:00:28,860 --> 00:00:32,930
going to focus on to predominantly, IKEv2 for the device‑based

10
00:00:32,930 --> 00:00:38,540
connections and SSTP for our user‑based connections.

11
00:00:38,540 --> 00:00:43,260
Once again, configuring the VPN server does require a variety of different steps.

12
00:00:43,260 --> 00:00:46,120
First, you can provision your VM and join it to the domain.

13
00:00:46,120 --> 00:00:48,150
That domain join is optional.

14
00:00:48,150 --> 00:00:50,700
I'm going to demonstrate it on a domain‑joined machine

15
00:00:50,700 --> 00:00:53,250
here in my demonstration for this course,

16
00:00:53,250 --> 00:00:55,240
but domain join is optional.

17
00:00:55,240 --> 00:00:59,270
Then we'll install our certificates, we will install the Routing and

18
00:00:59,270 --> 00:01:03,380
Remote Access role, and then configure VPN access, and there's a

19
00:01:03,380 --> 00:01:05,830
variety of steps involved in that as well.

20
00:01:05,830 --> 00:01:06,570
Finally,

21
00:01:06,570 --> 00:01:11,350
we'll talk a little bit about optimization and fine tuning for the VPN

22
00:01:11,350 --> 00:01:15,740
server because the default configuration out of the box less than ideal and

23
00:01:15,740 --> 00:01:19,000
probably not quite ready for production support.

24
00:01:19,000 --> 00:01:23,340
So definitely don't recommend installing NPS and RRAS and

25
00:01:23,340 --> 00:01:24,950
just throwing it out there to the world.

26
00:01:24,950 --> 00:01:32,000
There are a number of things that we want to do to make sure that it's capable of handling the load in the real world.