Setting up a virtual private network vpn. Vpn: what is it in a phone? Now about connecting to VPN from your phone

18.05.2019 Windows 8

Recently, methods of accessing the Internet via VPN networks have become more and more popular. This allows you to maintain maximum confidentiality, as well as visit web resources blocked by providers for various reasons. Let's see what methods you can use to set up a VPN on a computer with Windows 7.

Setting up a VPN in Windows 7, like most other tasks in this OS, is carried out using two groups of methods: by using third-party applications and using only the internal functionality of the system. Next, we will consider in detail these methods for solving the problem.

Method 1: Third-party programs

Let's immediately consider the algorithm for setting up a VPN using third-party applications. We will do this using the popular Windscribe software as an example. This program is good in that, unlike other free analogs, it can provide a fairly high-quality level of connection. But the limit of transmitted and received data is limited to 2 GB for anonymous users and 10 GB for those who indicated their email.

After downloading, run the installer of the program. In the window that opens, you will be offered two installation options:
- Express installation;
- Custom.

The installation procedure will start.

After its completion, the corresponding entry will be displayed in the installer window. If you want the application to start immediately after closing the window, leave a check in the checkbox "Launch Windscribe"... Then click "Complete".

This will open a window asking if you have a Windscribe account. If this is your first time installing this program, then click "Not".

The browser, which is assigned by default in the OS, will start. This will open the official Windscribe website in the registration section.
In field "Choose Username" enter the desired account. It must be unique in the system. If you find a non-unique username, you will have to change it. You can also generate it automatically by clicking on the icon in the form of arrows forming a circle on the right.

Into the fields "Choose Password" and "Password Again" enter the same password that you came up with. Unlike a login, it does not have to be unique, but it is desirable to make it reliable using generally accepted rules for constructing such code expressions. For example, combine letters in different cases and numbers.

In field "Email (Optional)" enter your email address. It is not necessary to do this, but if this field is filled in, then you will receive as much as 10 GB instead of the basic 2 GB of Internet traffic.

After everything is filled in, click "Create Free Account".

Then go to your email, find the email from Windscribe and sign in. Inside the letter, click on the element in the form of a button "Confirm Email"... This will confirm your email and get an additional 8 GB of traffic.

Now close your browser. Most likely, you will already be logged into Windscribe with the current account you just registered. But if this is not the case, then in the window with the inscription "You already have an account" click "Yes"... In the new window, enter your registration data: login and password. Next click "Entrance".

A small Windscribe window will open. To launch the VPN, click on the large round button on the right side of it.

After a short period of time during which the activation is carried out, the VPN will be connected.

By default, the program selects the best location with the strongest connection. But you can choose any other available option. To do this, click on the element "Connected".

A list with a list of locations will open. Those marked with an asterisk are only available for a paid premium account. Select the name of the region of the country through the IP of which you want to present yourself on the Internet.

A list of settlements will open. Select the city you want.

After that, the VPN will be reconnected to the location of your choice and the IP will be changed. You can see this without any problems right in the main window of the program.

As you can see, the procedure for setting up a VPN and changing the IP address through the Windscribe program is quite simple and convenient, and specifying your email address during registration allows you to increase the volume of free traffic several times.

Method 2: Built-in Windows 7 functionality

You can also set up a VPN using exclusively the built-in Windows 7 toolkit, without installing third-party software. But to implement this method, you must be registered with one of the services that provide access services for the specified type of connection.

Click "Start" with the subsequent transition to "Control Panel".

Click "Network and Internet".

Open the directory "Control center…".

Go to "Setting up a new connection ...".

Will display "Connection wizard"... Highlight the option that assumes the solution to the problem by connecting to the workplace. Click "Further".

Then a window for choosing a connection method opens. Click on the element that suggests your connection.

In the displayed window in the field "Internet address" type in the address of the service through which the connection will be made, and where you registered in advance. Field "Destination name" defines how this connection will be named on your computer. You do not have to change it, but you can replace it with any option convenient for you. Check the checkbox below "Don't connect now ..."... Then click "Further".

In field "User" enter the login to the service on which you are registered. In the form "Password" type in the code expression to enter and click "Create".

The next window will display information that the connection is ready for use. Click "Close".

Back in the window "Control Center", click on the element in its left part "Change settings…".

A list of all connections formed on the PC will be displayed. Find your VPN connection. Right-click on it ( PKM) and select "Properties".

In the displayed shell, navigate to the tab "Parameters".

Uncheck the checkbox here "Include domain ..."... It should be in all other checkboxes. Click "PPP Settings ...".

In the displayed window interface, uncheck all checkboxes and click "OK".

After you return to the main window of connection properties, move to the section "Safety".

From the list "VPN type" stop selection on position "Tunnel Protocol ..."... From the dropdown list "Data encryption" select option "Optional ..."... Also uncheck the checkbox Microsoft CHAP ...... Leave the other parameters in their default state. After completing the above steps, click "OK".

A dialog box will open, where there will be a warning that if you use the PAP and CHAP protocols, then encryption will not work. We have specified universal VPN settings that will work even if the service provider does not support encryption. But if this is critical for you, then register only with the external service that supports the specified function. In the same window, click "OK".

Now you can start a VPN connection by simply clicking the left mouse button on the corresponding item in the list of network connections. But every time it will be inconvenient to go to this directory, and therefore it makes sense to create a launch icon on "Desktop"... Click PKM by the name of the VPN connection. From the displayed list, select "Create shortcut".

A dialog box prompts you to move the icon to "Desktop"... Click "Yes".

To start the connection open "Desktop" and click on the icon you created earlier.

In field "Username" enter the login of the VPN service, which was already entered at the stage of creating the connection. In field "Password" type in the appropriate code expression to enter. So that you do not always have to enter the specified data, you can check the checkbox "Save username ..."... Press to start the connection "Connection".

After the connection procedure, the network location settings window will open. Select a position in it "Public network".

The connection will be completed. Now you can send and receive data over the internet using a VPN.

You can set up a VPN connection in Windows 7 using third-party programs or using only the functionality of the system. In the first case, you will definitely need to download the application, but the actual setup procedure will be as simple as possible, you will not have to look for any proxy services that provide the corresponding services. When using the built-in tools, you do not need to download anything, but you will need to first find and register with a special VPN service. In addition, you will still need to perform a number of settings, which are much more complicated than using the programmatic method. So you need to choose for yourself which option suits you best.

What to do in this case? The cunning Shadowsocks protocol comes to the rescue.

Shadowsocks- this is the experience of the Chinese, with the help of which the inhabitants of the country and journalists have been successfully bypassing the "Great Firewall of China" for several years.

If you live in Russia - save a note for future reference and share with your friends. Everything goes to the fact that soon it will come in handy.

Two VPN problems

VPN's are already like dirt. The good ones cost decently - $ 10 per month. Muddy newbies are cheaper - ~ $ 2-5. Someone generally sells a lifetime VPN for a one-time $ 40 fee.

Regardless of the price, all these services successfully solve the problem with blocking Internet resources and are experiencing a real boom. But VPNs have two major problems: they can collect information about your online behavior and are easily blocked by ISPs.

Confidentiality

The problem is, anyone with direct access to the VPN server can see your internet traffic. Therefore, you cannot blindly trust VPN services, even if they promise complete confidentiality of your data.

Companies can safely analyze your online behavior, sell this information to advertisers, embed their ads on unsecured sites, and you will never know about it. As far as I know, only VPN from TunnelBear.

You don't have to go far for examples. Facebook's Onavo VPN was caught collecting user data.

Simple blocking by providers

All VPN services have a limited number of servers to which a large number of users connect. It is easy for the artificial intelligence of the firewall to detect patterns and block servers. The Chinese government is demonstrating unprecedented success in this.

Shadowsocks is not a VPN

The Shadowsocks protocol, which was developed by a Chinese programmer to bypass the "Great Firewall of China", which a regular VPN cannot cope with. It is a tunnel proxy based on the SOCKS5 protocol.

Each Shadowsocks user has their own personal encrypted tunnel proxy that masks your activity as normal https traffic. This makes it difficult for the AI of the firewall to find patterns in traffic and block such a shadowsocks server. Simply put, he cannot understand whether you have entered YouTube, which is blocked in China, or read an article about cats. With a VPN, everything is different: the provider does not see your traffic either, but clearly sees that you have established an encrypted connection with a remote server in another country.

Shadowsocks is initially decentralized as it requires its own personal VPS server. Omitting the technical mamba-jamba: for Shadowsocks you need your own virtual server (VPS) with the software package installed. And also a client on the computer.

It is clear that most of the people want to watch the forbidden YouTube, and not set up a remote server. Therefore, a certain company Jigsaw released Outline service, which simplifies the installation of Shadowsocks to a few mouse clicks.

How Outline works

Outline is the development of Jigsaw, which in turn belongs to Google (Alphabet). It was originally conceived as a simple service for journalists who could access prohibited resources from countries like China and Iran.

Outline neatly positions itself as a VPN service and looks and works exactly like a VPN. But under the hood, it has pure Shadowsocks with all the benefits.

Install Outline

In addition, each new version of Outline is audited by a non-profit digital security company ().

My impressions

I have seen it repeatedly mentioned that Shadowsocks should be faster than a good VPN. Subjective feelings confirm this, but numbers do not.

Here are the speed results I got when connecting to the same server in Frankfurt from home WiFi:

Comparison of speed and ping

The speed is lower than that of a VPN, but this is noticeable only when downloading large files or torrents. At the same time, it turned out to be a little more pleasant to work with Outline than with TunnelBear. I notice this well on Instagram and Telegram, where the connection is noticeably faster, especially in 3G / LTE. This is not to say that with TunnelBear, software updates are slow, but in Outline there are less delays.

In the next updates, the developers will add the ability to encrypt traffic not for the entire system, but selectively for specific applications. For example, it will be possible to encrypt browser and Telegram traffic, while system updates and other applications will come from local servers. VPN does not know how to do this, because it encrypts everything in the forehead, which is why AirDrop falls off with VPN turned on on Mac.

Pros of Outline and Shadowsocks:

✅ Unlike regular VPN services, it is almost impossible to detect and block;

✅ Easy setup in 5 minutes;

✅ Complete confidentiality of your data: open source, non-profit security audit;

✅ Only $ 5 per month (for a virtual server);

✅ There is no limit on the number of connected devices.

Minuses:

⚠ For $ 5 you get 1 TB of traffic, for $ 10 - 2 TB. There is no limit in TunnelBear for the same money;

⚠ You are tied to one server in one country. It is difficult to find it, but if it falls under the chaotic blocking of Roskomnadzor, you will have to launch Outline Manager and spend 5 minutes creating a new one, with a different IP or in another country. It will take another 5 minutes to reconnect all connected devices;

⚠ Outline does not know how to block traffic when the connection was interrupted for some reason. TunnelBear does it with a bang, thereby reminding you to connect.

Eventually

Outline is great, especially if you have a lot of devices and a little money. For $ 5 a month, all your traffic will be encrypted, and blocked services will work like never before. If the Chinese firewall cannot cope with Outline and Shadowsocks, then the ministry of censorship will not cope, even more so.

It was previously launched from the creators of Pornhub and dubbed VPNhub. It can be used completely free of charge, but Roskomnadzor can unexpectedly block it at any time.

Telegram was blocked, free proxies and VPNs work intermittently due to a large influx of users, or even stop functioning without explaining the reasons, how.

Paid tools can also disappear at any time: the law banning anonymizers and VPNs has long been adopted, but has not yet been applied. In this situation, your own VPN becomes the only guarantee of freedom on the Internet. A life hacker will tell you how to set it up in 20 minutes.

Choosing a hosting

To set up a VPN, you need a VPS - a virtual private server. You can choose any hosting provider, as long as the following conditions are met:

The server is located in a country that does not fall under the jurisdiction of the Russian authorities, but is close enough to your real location.
Random access memory (RAM) must be at least 512 MB.
The network interface speed is 100 MB / sec and higher.
Network traffic - 512 GB or more or unlimited.

The amount of allocated space on the hard disk and the type of drive does not matter. You can find the right solution for $ 3-4 a month.

When buying a server, choose KVM. OpenVZ and Xen are also suitable if they have a TUN connection - you need to ask the hosting provider's technical service about this.

With KVM, no additional manipulations will have to be done, although some hosting providers may restrict the ability to create a VPN on it. You can also clarify this in the support service.

When configuring the server in the "Hostname" item, you can enter any value: for example, test.test... The prefixes NS1 and NS2 are also not important: we write ns1.test and ns2.test.

Operating system - CentOS 7.4 64 bit or any other distribution kit, there are no fundamental differences in setup. Leave the network traffic at 512 GB or choose an additional amount if you are afraid that the existing one will not be enough. Location - the closer the better. The Netherlands will do.

After payment, a letter will be sent to the mail with all the necessary data for setting up a VPN. You have purchased space on a server in another country, it remains to redirect all traffic to it.

Configuring VPN

We will use the Putty program to connect to the server and send commands. I received a link to it in an email with registration data for hosting. You can download the program. Putty and its counterparts are also available on macOS, the settings will be identical.

Run Putty. On the Session tab, in the Host Name field, enter the IP address that came in the letter and click Open.

When a warning window appears, click Yes. After that, the console will start, through which you will send commands to the server. First you need to log in - the authorization data is also in the letter from the hoster. Login will root, print it by hand. Copy the password to the clipboard. To paste the password into the console, right-click and press Enter. The password will not be displayed in the console, but if you are logged in, you will see the system information or server number.

There shouldn't be a long time between entering your username and password. If an error message appears, restart Putty and try again.

To set up the VPN, I used a ready-made OpenVPN road warrior script. This method does not guarantee complete anonymity, so it is easy to find the user when committing illegal actions. But it is enough to bypass the blocking. If all VPN services stop working, this connection will continue to function while I pay for hosting.

To use the script, paste the line wget https://git.io/vpn -O openvpn-install.sh && bash openvpn-install.sh into the console.

After successfully adding the script, a dialog with the configuration wizard will start. He independently finds the optimal values, you just have to agree or choose the appropriate option. All actions are confirmed by pressing the Enter key. Let's go in order:

The IP address must match the IP address that you received in the letter from the hoster.
Leave the default protocol UDP.
Port: 1194 - agree.
Which DNS to use - choose Google. Erase 1 , write 3 and press Enter.
Client name - enter the username. You can leave client.
Press any key - press Enter again and wait for the setup to finish.

After completing the configuration, you need to create a file through which you will connect to the VPN. Enter the command cat ~ / client.ovpn.

The contents of the file will appear in the console. Scroll up to the cat ~ / client.ovpn command and select everything that appears below except the last line. The selection should end with... To copy a fragment, press Ctrl + V.

Launch Notepad, paste the copied snippet and save the file on your desktop with the name client.ovpn.

We connect to the server

To connect using the created file, you need an OpenVPN client. The PC version can be downloaded. Download and install the program, but don't run it. Right click on the file client.ovpn and select Start OpenVPN.

A console window will appear with the initialization of the connection. If the connection was successful, the Initialization Sequence Completed status will be at the bottom. In the process of connecting, a window for selecting a network may appear, click on the public network.

To make sure the connection is correct,. It must match the one that the hoster wrote in the letter. To stop sending requests to a server in another country, close the OpenVPN window.

OpenVPN also has mobile clients.

To establish a connection, transfer the file to the phone's memory client.ovpn... Launch the application and select the OVPN Profile item. Specify the path to the file and move the slider to the "Enabled" position.

A VPN connection icon will appear at the top. To make sure that traffic is being redirected through a server in another country, open any IP address checker service in your mobile browser.

In addition to a powerful computer and an impressive list of additional programs for easy surfing and safe work on the Internet, you need a reliable server - a tool that provides communication with people, services, companies and information sites. Among the different types, the best choice would be a VPN server, if only because it is included in the Windows operating system as an option. Read on and you will be able to run and configure it on Windows 7 on your own and at no cost.

Connecting and configuring a VPN server

Don't be alarmed. It is not difficult to create and prepare a VPN server for correct operation, but a prerequisite is that you have administrator rights.

What is a VPN Server

Literally VPN (Virtual Private Network) translates as "virtual private network". Technically, it is a set of protocols and solution architecture that provides secure communication in a digital environment. Essentially, a VPN is a secure add-on on top of a familiar virtual network.

Installing and configuring a VPN server does not take much of your time, since it is already built into the Windows operating system. According to experts, the most successful private server configuration is contained on this platform.

This is what a simplified VPN server connection scheme looks like.

The server's job is to create tunnels that connect the user to the end "points" where he wants to go. Moreover, the information is encrypted using a complex algorithm, which is almost impossible to decode. No one from the outside can get inside the tunnel. The server blocks such attempts, leaving personal information well protected - correspondence, calls, messages, video and audio files.

What is it for

The essence of the answer lies in the tasks that the server performs. It not only unites many devices in the virtual space, such as computer terminals, laptops, tablets and even mobile devices. Its technology provides anonymity, data encryption and protection of confidential information from interception by hackers.

Some will argue: we have no need for anonymity and data protection, because there is nothing to hide. Let me not believe you. Not only cybercriminals use encrypted traffic, most of them are not averse to protecting their data in order not to “share” passwords to access their bank card or to become an object of blackmail due to leakage of personal information. As the saying goes: it is stupid to leave the door of the house open if the world does not consist of only good and kind people. Anonymity also adds a nice detail - the ability to visit resources that were previously unavailable for various reasons.

One of the most common reasons for using VPN is unwillingness to be tied to the workplace.

It's also a good idea to mention the benefits of using a VPN:

scalability - no additional costs are required when connecting another participant;
flexibility - it doesn't matter where you get access from;
a valuable opportunity to work anywhere.

A VPN server is also extremely necessary when creating corporate networks, when for the safe operation of a company or enterprise it is necessary to restrict access of unauthorized persons to information circulating among employees. Using VPN technical solutions, it is not difficult to manage the privacy of clients outside the firm.

How to create and configure on a Windows 7 computer: step by step instructions

The sequence of steps that you need to follow to start and configure the VPN server on the Windows 7 platform is as follows.

Open the Start menu and go to the Control Panel tab.
Go from Start Menu to Control Panel
In "Computer Settings" select "Network and Internet".
Open the "Network and Internet" section
In the window that opens, click "Network and Sharing Center".
Select "Network and Sharing Center"
Then click "Set up a new connection or network".
Select "Set up a new connection or network"
Select "Connect to a workplace" in the new window.
Press the button "Connect to the workplace"
Then click on "Use my internet connection (VPN)".
Select "Use my Internet connection (VPN)"
When prompted to establish an Internet connection immediately or postpone this action, select “Postpone setting up an Internet connection”.
Select "Postpone Internet Connection Setup"
Next, write down the server address, destination name and name for the connection.
Enter the address of the VPN server, in the field "Destination name" write the name of the connection
In the next window, enter the login and password that are registered on the VPN server. In the “Remember this password” field, check the box so as not to enter it every time you connect. Be sure to save.
Enter the login and password registered on the VPN server. Check the box "Remember this password"
The connection has been created. Click the Close button. For convenience, create a shortcut to the program on the Desktop.
Close a window
Go back to the "Start" menu, then to "Control Panel", "Network and Internet", "Network and Sharing Management", where select "Change adapter settings".
Go to the item "Changing adapter parameters"
Find the VPN connection in this window and right-click on it, then go to its "Properties".
In the VPN connection window, right-click on it and go to its "Properties"
Next, select the "Security" item, where in the "Type of VPN" field, select "Point-to-Point Tunneling Protocol (PPTP)", and in the "Data encryption" field, click on the "Optional" item.
Open "Security" and in the "Type of VPN" field select "Point-to-point tunneling protocol (PPTP)", in the "Data encryption" field select "optional"
In the same window, only on the "Network" tab, uncheck the boxes next to the "Client for Microsoft networks" and "Service of access to files and printers for Microsoft networks".
On the "Network" tab, uncheck the boxes next to the items: "Client for Microsoft networks" and "Service of access to files and printers of Microsoft networks"
Then, without closing the window, go to the "Settings" tab and uncheck the box next to the item "Enable Windows logon domain", and then click "OK".
On the "Options" tab, uncheck the box next to the "Enable Windows logon domain" item, then click "OK"

Before starting the VPN, it will ask for a location. The best choice is "Public Place", then the greatest privacy in the digital space will be ensured. If desired, in the "Connection" menu, configure the settings for encryption and the use of other devices.

If you still have questions about installing and configuring a VPN server in Window 7, watch the video.

Video: how to set up and configure a VPN connection in Windows 7

Configuring for multiple clients

The process of connecting new members of the private network is as follows.

Go to "Control Panel" => "Network Connections" => "Create a New Connection".
Start working with "New Connection Wizard" => "Direct connection to another computer" => "Accept incoming connections".
The "wizard" will offer to indicate those devices with which you plan to accept incoming connections, but they do not fit, so click on "Next". When the "Wizard" asks the question about VPN, stop at "Allow virtual private networks".
Entering authorization parameters. The "wizard" offers to select those users who are allowed to enter the virtual private network. Select and click the "Add" button. When prompted by the Wizard, enter the new username and password.
Configure TCP / IP protocols. Select the appropriate item in the list of protocols and click on the "Properties" button. In order for the client to be able to access the local network, activate the "Allow callers to access the local network" option. Next, designate the range of IP addresses that the connected participants can use.

Troubleshooting installation and operation problems

VPN startup is often accompanied by errors. The machine reports them in three digits. So, errors with a digital value of 6 ** indicate the operating state of the network, but you need to check the entered information. This refers to the type of communication protocol, password and name. Code 7 ** gives information about the presence of errors in the connection settings. Code 8 ** hides network configuration problems or those associated with a banal lack of Internet connection.

Let's take a look at common mistakes and how to fix them.

Error 807

This error indicates a disconnected network connection. A common reason is problems in the transmission of traffic due to poor quality of the Internet or server congestion.

This is how the system reports error 807

There are many options for solving the problem. Try to recreate the VPN connection. Did not help? This means, delete the KB958869 system or, better, restore it to its previous state. Did it fail again? Then change the connection type from automatic function to "PPTP". Note that error 807 also occurs when blocking by a firewall / firewall, so try disabling them.

Error 868

We are talking about the malfunctioning of the VPN ports. Often the disconnection is due to an invalid DNS server name. Therefore, first look at the TCP / IP protocol. There either the DNS address is incorrectly specified, or it is not entered at all.

This is what error 868 looks like

Determine the status of the LAN connection. In the "Network Connections" tab, follow these steps in sequence: "Start" => "Control Panel" => "Network and Internet" => "Network Control Center" => "Changes to adapter settings". The discovered defect will dictate further actions.

So, if there is no local network connection, connect via VPN. No result? Check if the cable is working. If you disable it, you will see blue screens with a red cross on the corresponding icon. Try right-clicking first to disconnect and then reconnect the connection. Again, nothing happened? Then do the same "disconnect / connect" operation with the cable (manually).

Does the error still exist? Go ahead and test the connection. Open it with the right button and see how many packets have been sent - there should be at least 5–7 of them. If the shipment took less or is completely empty, then find out how the equipment works. Go to "Administrative Tools" in this way: "Start" => "Control Panel" => "System and Security" => "Administrative Tools" => "Services". Find DHCP Client in the list of services. Restart it with the right click. Then restart your PC.

The reason for the inoperative state is the blocking of port 53. Your excessive caution has simply played a cruel joke - you yourself have programmed the security system in such a way that it does not allow absolutely everything. In this regard, it is recommended to check if port 53 is blocked. Even if it says "Port is open", this does not mean that the connection is going through. This refers only to the readiness to connect. Just create an Allow Rule for port 53 in TCP and UDP protocol. No result? Then you have to resort to the least, that is, reinstall Windows.

Be sure to watch the video with detailed instructions for opening the port. It also shows how to fix port connection errors.

Video: open a port on a local network

Errors 734 and 741

Error 734 occurs when the PPP Link Control Protocol is interrupted, and error 741 is due to the machine not recognizing this type of encryption.

Error 734 is fixed with a simple algorithm

Simple actions will help to correct the situation. Double-click the left button on the VPN and open Properties, then Security and uncheck Data Encryption Required. Confirm your intentions.

This is just a small part of the problems that arise when starting a VPN, but almost all of them can be solved quite simply and without much time consuming.

What is OpenVPN

The most popular private networking solution is OpenVPN. The main advantage is economy, since the traffic is compressed. Among the shortcomings of the program is the complexity of the setup, which we will now deal with.

OpenVPN is a special program for setting up a VPN connection. Naturally, you first need to install it on your computer. It is better to take the download file from the official website of the program:

The installation process is quite simple, except that you will need to temporarily disable the antivirus. When the program is loaded, the virtual network adapter TAP-Win32 Adapter V9 and the driver for it are entered into the system. The task of OpenVPN is to set the IP address and mask of the local add-on.

First of all, you need to copy the configuration file that the provider should provide you with. Save the data in the C: \ Program Files \ OpenVPN \ config folder. While in it, click on the "Insert" item.

OpenVPN should be run only with administrator rights, otherwise the program may not work correctly. Be sure to change the compatibility properties in the OS. On OpenVPN, open Properties, find the Compatibility item, and check Run this program as an administrator. Then confirm your actions by clicking on "OK". The connection log window should appear.

If you followed all the steps correctly, then the VPN setup via the OpenVPN protocol for Windows 7 was successful. Do you have any difficulties? Check out screenshots of the Open VPN setup step-by-step instructions and a short video.

We set up the program step by step (photo)

Copy the config file to C: Program FilesOpenVPNconfig folder

Confirm the access request

Run Open VNP as administrator: go to "Start" and right-click on the OpenVPN shortcut, select "Properties"

Open the program menu in the tray (in the right corner) and select "Connect"

A window with the contents of the connection log will start

Video: Installing OpenVPN GUI

Configuring IPSec VPN

The IPSec standard is specifically designed to harden the security of the IP protocol. Allows you to verify the authenticity (authentication), and also checks the integrity and encryption of IP packets. IPsec contains protocols for secure key exchange:

RFC 2401 IPSec,
RFC 2402 AH,
RFC 2406 ESP,
RFC 2409 IKE.

How you can set up a VPN using IPsec is outlined in the step-by-step guide below.

In the "Control Panel" click "View: Small Icons", then go to "Control Center".
Next, find "Setting up a new connection" on the "Change network settings" tab.
Complete the action by clicking on "Connect to a workplace". Go to it on the "Establish a connection or network" tab.
Then you act depending on whether a VPN was previously installed on your machine. If yes, then in the pop-up window, click "No, create a new connection and continue with your actions." If not, then select "Use my internet connection".
Don't forget to add your VPN address, and in the Destination Name line write the server name. Don't forget the mark. Select the "Installation for future connection" column and continue with your steps.
Next, add your password and username registered on the VPN server. In the window that opens, consent to the connection.
Then, in the "Network and Sharing Center" change the adapter settings.
Finally, select "VPN Type". This is IPsec VPN. Of course, note that encryption is optional. VPN-channel to IPsec is ready!

At the end of the topic about IPsec VPN, I would like to emphasize the utility of the program, given the two disadvantages that VPN has. The first and most serious is the vulnerability of the PPTP protocol. We are talking about the lack of reliability of one-factor authentication. In other words, when we confirm our right of access only with a username and password. In this case, the login or username is usually known, and the password quite often falls into the hands of a hacker (for example, when a Trojan virus is introduced into your OS). Then an unauthorized person gets full access to the local network. The second drawback is that there is no way to verify that the connection was made by a trusted user, and not by the same attacker who gained access to the account.

Video: configuring an IPsec tunnel between two Mikrotik routers

Now, user, you know, if not all, then the basic steps for creating and configuring your own, complete and completely secure virtual network based on a VPN connection in Windows 7. You also learned how to properly configure the OpenVPN and IPsec VNP programs. Rest assured, a private server guarantees the same full connection as a regular one. Your computer will not notice the difference between a VPN and an unencrypted channel, but the security of your digital work is increased several times.

Have become commonplace. True, no one really thinks about what is behind the concept such as "VPN, configuration, use, etc.". Most users prefer not to go into the jungle of computer terminology and use standard templates. But in vain. From the knowledge of such connections, you can derive a lot of benefits, for example, increase traffic or connection speed, etc. Let's see what a connection to a virtual network really is using the example of the interaction of Windows operating systems on a stationary computer terminal and Android on a mobile device.

What is VPN

To begin with, VPN configuration is impossible without a general principle of understanding the essence of the connection being created or used.

In simple terms, such a network necessarily contains a so-called router (the same router), which provides computers or mobile devices trying to connect to an existing network, standard additional IP addresses for accessing LAN or the Internet.

At the same time, a virtual network in which there is an activated VPN connection setting perceives any device connected to it, with the assignment of a unique internal IP address. The range of such addresses is in the usual standard from zero to 255.

What is most interesting, even when accessing the Internet, the external IP address of the device from which the request is made is not so easy to determine. There are several reasons for this, which will be discussed below.

The simplest VPN setup for Android

Almost all virtual networks using a wireless connection like Wi-Fi work according to the same principle - the assignment of free IP addresses from the available range. It is not surprising that any mobile device can be easily connected to them (but only if it supports the appropriate connection protocols).

However, today any smartphones or tablets based on the Android operating system have the option of connecting the same Wi-Fi in their functionality. The network is detected automatically if the device is within its coverage area. The only thing that may be needed is just entering a password. The so-called "shared" (share) do not require a password at all.

In this case, you need to go to the basic settings on your smartphone or tablet and activate the Wi-Fi connection. The system itself will determine the presence of radio modules at a distance of 100-300 meters from the device (it all depends on the model of the distributing router). After defining the network, a menu will be displayed with all available connections, indicating their blocking. If the network has a padlock icon, it is password protected (however, this will be indicated in the message initially). If you know the password, enter.

In public networks, where password entry is not provided, it is even easier. Is the network defined? Everything. We click on the connection and use it. As it is already clear, VPN configuration is not required in this case at all. Another thing is when you need to use the settings of Windows or another operating system (even mobile) to create a connection or assign the status of a distributing VPN server to a computer terminal or laptop.

Create and on Windows

With the "operating systems" of the Windows family, not everything is as simple as most users think. Of course, they do automatic recognition of a network or connection via Wi-Fi, ADSL, or even a direct connection via an Ethernet network card (subject to the presence of installed equipment). The question is different: if the distributor is not a router, but a laptop or stationary computer, how to get out of this situation?

Main settings

Here you have to delve into the VPN settings. Windows as an operating system is considered first and foremost.

First, you need to pay attention not even to the settings of the system itself, but to its accompanying components. True, when creating a connection or using it to the maximum, you will have to configure some protocols such as TCP / IP (IPv4, IPv6).

If the provider does not provide such services in automatic mode, you will have to make settings indicating the previously obtained parameters. For example, when auto-connecting, the fields in the properties of the Internet browser for filling will be inactive (there will be a dot on the item "Obtain an IP-address automatically"). That is why you do not have to register the values of the subnet mask, gateway, DNS or WINS servers manually (especially when it comes to proxy servers).

Router settings

Regardless of whether you are setting up a VPN on an ASUS laptop or terminal (or any other device, by the way), access to the network is still common.

For the correct one, you need to go to its own menu. This is done using any Internet browser, provided that the router is directly connected to a computer or laptop.

In the address field, enter the value 192.168.1.1 (this corresponds to most models), after which you should activate the power-on function (enable the router's parameters in advanced mode). Typically, this line looks like WLAN Connection Type.

Using VPN Clients

VPN clients are quite specific programs that work like anonymous proxy servers that hide the true IP address of a user's computer when accessing a local network or the Internet.

Actually, the use of programs of this type comes down to almost complete automation. The VPN setting in this case, in general, is not important, since the application itself redirects requests from one server (mirror) to another.

True, you will have to tinker a little with setting up such a client, especially if you want to make the maximum available connections in your home virtual network. Here you have to choose between software products. And it should be noted that some applications, the smallest in size, sometimes surpass the commercial products of many well-known brands, for which you also have to pay (by the way, a lot of money).

What about TCP / IP?

It goes without saying that almost all of the above settings affect the TCP / IP protocol to one degree or another. To date, nothing better has been invented for a comfortable one. Even remote anonymous proxies or local datastores still use these settings. But you need to be careful with him.

It is best to contact your ISP or system administrator before changing settings. But one thing must be clearly remembered: even when setting the values manually, as a rule, the subnet mask has the sequence 255.255.255.0 (it can change), and all IP addresses start with the values 192.168.0.X (the last letter can have from one to three characters ).

Conclusion

However, all these are subtleties of computer technology. The same VPN client for Android can provide communication between multiple smart devices. But the biggest snag is whether it is worth using such a connection on a mobile gadget.

If you noticed, we did not go into technical details too much. Rather, it is a descriptive instruction about general concepts. But even that simple example, I think, will help, so to speak, to comprehend the very essence of the question. Moreover, with its clear understanding, the whole problem will be reduced only to the system settings, which will not affect a specific user in any way.

But here you need to be very careful. Actually, for those who do not know what a VPN connection is, it will do little. For more advanced users, it should be said that it is not recommended to create a virtual network using your own Windows OS tools. You can, of course, use the initial settings, however, as practice shows, it is better to have some additional client in stock, which will always be like a trump card in the sleeve.