How to configure a VPN server by using Internet Security and Acceleration (ISA) Server 2006, ISA Server 2004, Microsoft Forefront Threat Management Gateway Medium Business Edition, or Windows Essential Business Server 2008

A virtual private network (VPN) is the extension of a private network that encompasses links across shared or public networks such as the Internet.

By using a VPN, you can send data between two computers across a shared or public network in a manner that emulates a point-to-point private link. VPN connections allow remote users to obtain a remote access connection to an organization server by using the Internet.

From a user�s perspective, the VPN is a point-to-point connection between the computer, the VPN client, and an organization server (the VPN server).

This article discusses how to configure a Microsoft Internet Security and Acceleration (ISA) Server 2006 or ISA Server 2004 as the VPN server and how to configure VPN remote client access.

You can manage VPN client access to the corporate network by using ISA Server or Microsoft Forefront Threat Management Gateway, Medium Business Edition as the VPN server. VPN clients can be quarantined by ISA Server in the Quarantined VPN Clients network until their compliance with corporate security requirements is verified. Then, the VPN clients can be moved to the VPN Clients network. VPN client networks are subject to the ISA Server firewall access policy that controls VPN client access to network resources.

To configure VPN remote client access, follow these steps:

1. Create a user group that contains users who have VPN client access and access that is controlled through a remote access policy.
2. Configure VPN access on the ISA Server computer, enable access to the user group that you created in step 1, and then specify how IP addresses are allocated to incoming VPN connections.
3. Configure ISA Server access rules and network rules to allow access.

To configure VPN remote client access on Microsoft Forefront Threat Management Gateway, Medium Business Edition, follow these steps:

1. Create a user group that contains users who have VPN client access and access that is controlled through a remote access policy.
2. Configure VPN access on the Microsoft Forefront Threat Management Gateway, Medium Business Edition Server computer, enable access to the user group that you created in step 1, and then specify how IP addresses are allocated to incoming VPN connections.
3. Configure Microsoft Forefront Threat Management Gateway, Medium Business Edition Server access rules and network rules to allow access.

For more information about how to configure VPN remote client access, visit the following Microsoft Web site:For more information about VPN roaming clients and quarantine control in ISA Server, visit the following Microsoft Web site:For more information about VPN roaming clients and quarantine control in ISA Server, Enterprise Edition, visit the following Microsoft Web site:For more information about how to configure VPN access in ISA Server, search on "VPN" in ISA Server Help.