Pros and Cons of Server 2008 SSTP VPN
Windows Server 2008 includes support for new SSTP protocol. It allows clients to connect to corporate VPN overcoming many technical difficulties that’s in PPTP and L2TP/IPSec.
Pros of SSTP VPN
SSTP VPN allows users to connect from anywhere. The advantage of SSTP VPN is that it only uses port 443 which is allowed by most firewalls. The predecessor PPTP had issues because a lot of corporation firewalls do not GRE traffic to pass through. SSTP VPN is perfect for Sales employees and executives who travel a lot that needs VPN connectivity from anywhere.
Cons of SSTP VPN
Since SSTP is SSL based, you will want to buy a Certificate from external CA such as Verisign. Also SSTP VPN Server must be Server 2008 and SSTP VPN Clients must be Windows XP SP3 and later or Windows Vista SP1 and later.
VPN Protocol |
Protocol |
Port |
Description |
| SSTP | TCP | 443 | Allows VPN traffic via HTTPS to and from RRAS Server |
| PPTP | TCP | 1723 | PPTP tunnel maintenance traffic to and from RRAS |
| PPTP | IP | 47 | PPTP data to and from RRAS Server |
| L2TP | UDP | 500 | IKE traffic from and to RRAS Server |
| L2TP | UDP | 4500 | IPSec NAT-T traffic from and to RRAS Server |
| L2TP | IP | 50 | IPSec ESP traffic from and to RRAS Server |