If you would like to setup a Virtual Private Network (VPN) for Windows clients, PPTP is a great choice. It’s easy to set up on the server and you don’t need any additional software for the Windows clients to connect.
1. Install the required packages
apt-get install pptpd
2. Configure the IP range assigned to clients (pico /etc/pptpd.conf)
Using this config the clients are assigned any IP address between and including 192.168.1.10 and 192.168.1.20.
3. Restart the PPTP daemon
4. Create a user allowed to connect (pico /etc/ppp/chap-secrets)
user1 pptpd secretpassword *
Passwords are not encrypted. This allows the a user with the username: user1 and the password: secretpassword to login from any ip address.
5. Enable IP forward at startup to allow the VPN clients to connect to the server’s local network. (pico /etc/sysctl.conf)
Also run this command to activate the IP forward instantly:
echo 1 > /proc/sys/net/ipv4/ip_forward
6. Create a routing rule to allow the VPN clients to route network traffic through the server.
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
Read this tutorial to learn how to create iptables rules on startup:
Loading iptables rules on startup