Bartlett Hospital Web Services  
     
Support for VPN Connections

Operating System Requirements

Supported VPN Technologies

  • Layer 2 Tunneling Protocol with IPSec (L2TP/IPSec) with Network Access Protection (NAP)
    Windows XP
    Windows Vista
    Windows 7
    Windows 8
  • Secure Socket Tunneling Protocol (SSTP) with Network Access Protection (NAP)
    Windows Vista
    Windows 7
    Windows 8

Layer 2 Tunneling Protocol with IPSec Requirements

  • The Bartlett Root Certificate installed in the Trusted Root Certificate Authorities node of the Local Computer
  • A Bartlett issued client certificate installed in the Personal node of the Local Computer
  • Client support for L2TP/IPSec
  • Client support for Protected EAP (PEAP)
  • Client support for MSCHAPv2
  • Client support for Maximum Strength Encryption (128 bit)
  • Network Access Protection (NAP) Client

Secure Socket Tunneling Protocol Requirements

  • The Bartlett Root Certificate installed in the Trusted Root Certificate Authorities node of the Local Computer
  • Client support for SSTP
  • Client support for Protected EAP (PEAP)
  • Client support for MSCHAPv2
  • Client support for Maximum Strength Encryption (128 bit)
  • Network Access Protection (NAP) Client

VPN Access Information

  • vpn.bartletthospital.org

Antivirus and Antimalware Requirements

  • Antivirus and Antimalware (with up-to-date definitions). Must integrate with Windows Security Center to pass health check. If health check fails, access will be denied. If you do not have up-to-date Antivirus and Antimalware, please install a free version of Microsoft Security Essentials via the link below:
  • Microsoft Security Essentials (Free Version) http://www.microsoft.com/security_essentials

Firewall Requirements

  • Firewall may be a hardware device or software based. Firewall should be configured to block unsolicited incoming connections.
    For Layer 2 Tunneling Protocol with IPSec: Firewall must allow IKE (UDP 500), IPSec NAT-T (UDP 4500), or IPSec ESP (IP Protocol 50) to the VPN endpoint (vpn.bartletthospital.org)
    For Secure Socket Tunneling Protocol: Firewall must allow SSTP (TCP 443) to the VPN endpoint (vpn.bartletthospital.org)

Communication Traffic Flows

  • Layer 2 Tunneling Protocol with IPSec
    VPN client negotiates association using IKE (UDP 500)
    VPN client establishes ESP channel using IPSec ESP (IP Protocol 50)
    or
    VPN client establishes ESP channel using IPSec NAT-T (UDP 4500)
  • Secure Socket Tunneling Protocol
    VPN client establishes tunnel using SSTP (TCP 443)
  Home