Sunday, March 02, 2008

SSTP VPN

Now that I have Vista SP1 on my primary machine, I wanted to set up my Windows Server 2008 box to act as an SSTP VPN endpoint. SSTP essentially tunnels a PPP VPN over HTTPS. What's great about this is that port 443 is almost always open, increasing the odds that I can connect to home from anywhere. I actually bought an SSL certificate (see?) from GoDaddy (it was $15/year). I had a couple issues installing the certificate and making the VPN work. First, I had to install the certificate on the command line, as the UI was giving me an error (ASN1 bad tag value met). Second, I had to remap the certificate to port bindings. I believe that my setup was incorrect because it had only ever been bound through the IIS UI. Again, using the command line fixed it.

Further Reading:
Detailed post of how SSTP works.
More blog entries on SSTP.

No comments: