Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

  1. Kemp Support
  2. Knowledge Base
  3. Applications

SSTP VPN setup on KEMP

Updated

Scope

Setup SSTP for MS Always on VPN over 443

 

Description

WINDOWS RRAS Routing and Remote Access Services (RRAS) Feature of the Windows Server 2016 operating system Mature, robust, and stable First introduced in Windows 2000 Support for modern VPN protocols

 

Configuration of Basic setup

Create new virtual service on port 443

SSTP_new_service_Configuration.png

Set Scheduling to Least connection

SSTP_Scheduling_Configuration.png

Set persistence to Source IP

SSTP_persistence_Configuration.png

Set health check to TCP connection only on port 443

 SSTP_Health_check_Configuration.png

 

Configuration of SSL offload setup

Create new virtual service on port 443

Set Scheduling to Least connection

Set persistence to Source IP

Enable SSL acceleration

SSTP_Offload_SSL__Configuration.png

Do not re-encrypt

Select correct cert

Choose best practices cipher set

Set health check to TCP connection only on port 80

Go to the windows RRAS server and right click on the VPN server in the RRAS MMC. Choose properties. Click the security tab. Select option to "Use HTTP"

 

 

 

Comments

In this document