SSTP VPN setup on KEMP
Scope
Setup SSTP for MS Always on VPN over 443
Description
WINDOWS RRAS Routing and Remote Access Services (RRAS) Feature of the Windows Server 2016 operating system Mature, robust, and stable First introduced in Windows 2000 Support for modern VPN protocols
Configuration of Basic setup
Create new virtual service on port 443
Set Scheduling to Least connection
Set persistence to Source IP
Set health check to TCP connection only on port 443
Configuration of SSL offload setup
Create new virtual service on port 443
Set Scheduling to Least connection
Set persistence to Source IP
Enable SSL acceleration
Do not re-encrypt
Select correct cert
Choose best practices cipher set
Set health check to TCP connection only on port 80
Go to the windows RRAS server and right click on the VPN server in the RRAS MMC. Choose properties. Click the security tab. Select option to "Use HTTP"