Home



If you start an RDP session with the company from home, you won't have internet yourself.
You can bypass that

https://magdalena-it.nl/WVD-RDS-VPN/img1C.jpg


TP-Link TL-R600VPN

Setting up an L2TP/IPSec VPN

The TP-Link TL-R600VPN is a professional VPN router with 5 Gigabit Ethernet ports for lightning-fast wired connections. Set up up to 20 VPN connections and keep your network secure with the built-in security features.


Features TP-Link TL-R600VPN SafeStream
Gigabit VPN router
1x gigabit WAN, 4x gigabit LAN
Supports IPsec/PPTP/L2TP VPN
Up to 20 simultaneous IPSec VPN tunnels
Comprehensive network security
Professional 4kV lightning protection


Gigabit VPN Router
The TP-Link TL-R600VPN provides a reliable corporate network that can be securely accessed remotely by your employees. The router has comprehensive VPN and security features and is equipped with 5 Gigabit Ethernet ports (1x WAN, 4x LAN) to connect your devices to the network at high speed.

 

VPN support
For home workers or employees who want to access the corporate network on the go, the TP-Link TL-R600VPN offers comprehensive VPN capabilities following multiple VPN protocols, such as IPsec, PPTP and L2TP. Up to 20 secure VPN connections can be set up. Users can thus gain secure remote access to the corporate network.


Comprehensive network security
To protect your company data from cybercriminals, the TP-Link TL-R600VPN is equipped with comprehensive security features. These detect and block potential threats and provide protection against DoS attacks (such as TCP/UDP/ICMP flooding, TCP scanning), for example. Specific websites and services can also be blocked.


Lightning protection
The built-in lightning protection of the TP-Link TL-R600VPN SafeStream prevents connected devices from being damaged by lightning.
The router offers protection up to 4 kV with properly grounded connections.
But this protection does not amount to anything in NL.
Because the supplied adapter has no protective earth.
In other countries it does,
because there the earth is connected to the neutral.

 



Index

What is a VPN?.............................................................................1

Step 1. Create a VPN-address pool..................................... 2

Step 2. Configure the L2TP VPN server............................. 2

Step 3. Create a VPN-user.........................................................3

Step 4. Connecting to Windows 10.......................................4

Step 1. Create a new connection............................................4

Step 2. Coose the type of connection...................................4

Step 3. Setting up the basic VPN connection settings...5

Step 4. Other settings of the VPN connection'..................5

Step 5. Connecting the VPN-server........................................5 



What is a VPN?
A VPN (Virtual Private Network) is a secure connection over a public network such as the Internet.
With a VPN, you can connect a workstation to a corporate network as if the computer were at the company's location


The VPN does two things. It provides a connection and it encrypts the traffic over that connection.
It is often referred to as a VPN tunnel.
There are several protocols available to set up a VPN.
This document describes setting up an L2TP (Level 2 tunneling protocol) on a TP-link router.
L2TP provides the connection, IPSec ensures that the traffic between the endpoints is encrypted.

The configuration of the VPN-server
Perform the following steps to configure the VPN server (the endpoint in the router).

There are a few things to keep in mind.
First, it is wise to choose a secure protocol. PPTP is easy to set up but it has known security risks.
So choose L2TP or SSL (OpenVPN) if available.
In our case OpenVPN is not available so we choose L2TP/IPSec.

 It is also wise to ensure that there are no IP conflicts.

 

It is advisable to make the corporate network a class A (IP range 10.0.0.0/8) or a class B IP range (172.16.0.0/12).
This avoids conflicts with home networks, which tend to be class C (192.168.0.0/16).
If there is a device on the home network with the same ip address as on the corporate network that you are trying to reach, there is a conflict and the device on the corporate network will be inaccessible.

 
Step 1. Create a VPN address pool
S
et up in the router which block of addresses you want to use within your VPN.
These addresses are used for the endpoints.

a-1.jpg


Step 2. Configure the L2TP VPN server  
Set the active WAN connection so that the VPN traffic comes in on it.

Enable encryption and choose a password (Pre-Shared-Key). Enable the server: status enabled.

The server is up and running, now we need to create users.

Click on the next 4 pictures to enlarge.




Step 3. Create a VPN user
Choose a username and password. Set the protocol L2TP. Set a Local IP address, this is the address for the endpoint on the user side.
DNS Server is the DNS server assigned to the user, 8.8.8.8 is the IP address of a public DNS server from Google.
Choose the type of VPN, in our case Client-to-Lan because we are not setting up a permanent connection between two sites.
The maximum number of connections is 1, a user can only set up 1 connection. 





The server is ready for use.

Step 4. Connecting to Windows 10
Follow these steps to set up a VPN connection with Windows 10.

Step 1. Creating a new connection
Go to Control Panel -> Network and Internet -> Network Center and choose Set up a new connection or network. Then choose Connect to a Company Network'.


Step 2. Choose the type of connection
Choose 'Use my internet connection' (VPN)



Step 3. Setting up the basic VPN connection settings

Enter the IP address of the VPN server (Found in the office at https://whatismyipaddress.com/).
And give the connection a name.





Step 4. Other settings of the VPN connection
Go to the network center. If all goes well, the new VPN connection will be among the other connections (Komp-u-ter-hulp).



Right click on the VPN connection and set the other connection settings.
Go to the security tab and choose the L2TP/IPSec (Layer2 Tunneling Protocol with IPSec) as the VPN type.
Under Data encryption, choose 'Encryption required'.
This way no data (including passwords) is transmitted over the connection without encryption.. 


Then choose advanced settings and enter the Pre-shared key (see step 2 on setting up the server).

Close all windows.

Step 5. Connecting to the VPN server
Now we are ready to connect to the VPN server. Click on the network icon in the lower right corner of the taskbar.
Click on connect, connect and fill in the user information see step 3 on setting up the server)