The following steps take place during this connection:
1. The SSTP client establishes a TCP connection to port 443 on the server.
2. The client indicates that it wants to establish a connection by sending an
SSL Client-Hello message.
3. The server sends its computer certificate to the client.
4. The client validates the server certificate and generates an SSL session key
that is encrypted using the public key of the SSTP server.
5. The client sends the SSL session key to the SSTP server.
6. The server extracts the SSL session key using its private key, and the SSL
key is used for all future communication.
7. The client sends an HTTPS request to the server.
8. The client negotiates an SSTP tunnel with the server.
9. The client negotiates a PPP connection with the server, which also
authenticates the user and configures IPv4 and IPv6 settings.
10. The communication between the server and the client is sent over the
tunneled PPP link.
385 Chapter 11: Routing and Remote Access
or authentication. This problem is resolved by pairing it up with IPSec to manage the
security associations and encryptions for the channel. L2TP then takes advantage of this
secure channel to establish a tunnel between the client and server. It no longer needs to
worry about encryption or authentication since those have already been established by
its partner, IPSec.
Secure Socket Tunneling Protocol (SSTP) is a new tunneling protocol introduced with
Windows Server 2008.
Pages:
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423