VPN 连接种类 VPN connection types


实用于 Applies to
  • Windows 10 Windows10
  • Windows 10 移动版 Windows10 Mobile

虚拟专用网 (VPN) 是专用或公用网络上的点对点连接,比方 Internet。 Virtual private networks (VPNs) are point-to-point connections across a private or public network, such as the Internet. VPN 客户端使用特别 TCP/IP 或基于 UDP 的协议(称为 隧道协议 ),在 VPN 服务器上对虚拟端口进行虚拟调用。 A VPN client uses special TCP/IP or UDP-based protocols, called tunneling protocols , to make a virtual call to a virtual port on a VPN server. 在典型的 VPN 摆设中,客户端通过 Internet 启动到长途访问服务器的虚拟点对点连接。 In a typical VPN deployment, a client initiates a virtual point-to-point connection to a remote access server over the Internet. 长途访问服务器应答调用、对换用方进行身份验证,并在 VPN 客户端和组织的专用网络之间传输数据。 The remote access server answers the call, authenticates the caller, and transfers data between the VPN client and the organization’s private network.

有很多用于 VPN 客户端的选项。 There are many options for VPN clients. 在 Windows 10 中,内置插件和通用 Windows 平台 (UWP) VPN 插件平台基于 Windows VPN 平台天生。 In Windows 10, the built-in plug-in and the Universal Windows Platform (UWP) VPN plug-in platform are built on top of the Windows VPN platform. 本指南偏重介绍可设置的 Windows VPN 平台客户端和功能。 This guide focuses on the Windows VPN platform clients and the features that can be configured.

VPN 连接类型

内置 VPN 客户端 Built-in VPN client

    隧道协议 Tunneling protocols

  • 主动 Automatic

    主动 选项意味着装备将实验每个内置隧道协议,直到某个协议成功为止。 The Automatic option means that the device will try each of the built-in tunneling protocols until one succeeds. 按安全性从高到低的次序实验。 It will attempt from most secure to least secure.

    在 VPNv2 CSP 中为 NativeProtocolType 设置设置 主动 Configure Automatic for the NativeProtocolType setting in the VPNv2 CSP .

通用 Windows 平台 VPN 插件 Universal Windows Platform VPN plug-in

尽管存在最初用于 Windows 8.1 移动版和 Windows 8.1 电脑版平台的单独版本,Windows 10 中还引入了通用 Windows 平台 (UWP) VPN 插件。 The Universal Windows Platform (UWP) VPN plug-ins were introduced in Windows 10, although there were originally separate versions available for the Windows 8.1 Mobile and Windows 8.1 PC platforms. 使用 WUP 平台,第三方 VPN 提供商可以使用 WinRT API 创建应用容器化的插件,从而消除通常与写入系统级驱动程序关联的庞杂性和问题。 Using the UWP platform, third-party VPN providers can create app-containerized plug-ins using WinRT APIs, eliminating the complexity and problems often associated with writing to system-level drivers.

存在大量通用 Windows 平台 VPN 应用程序,比方 Pulse Secure、Cisco AnyConnect、F5 Access、Sonicwall Mobile Connect 和 Check Point Capsule。 There are a number of Universal Windows Platform VPN applications, such as Pulse Secure, Cisco AnyConnect, F5 Access, Sonicwall Mobile Connect, and Check Point Capsule. 假如你想要使用 UWP VPN 插件,请与供给商协作,获取设置 VPN 解决方案所需的任何自定义设置。 If you want to use a UWP VPN plug-in, work with your vendor for any custom settings needed to configure your VPN solution.

设置连接种类 Configure connection type

有关 XML 设置,请参阅 VPN 设置文件选项 和 VPNv2 CSP 。 See VPN profile options and VPNv2 CSP for XML configuration.

下图表现了使用 Microsoft Intune 的 VPN 设置文件设置策略中的连接选项。 The following image shows connection options in a VPN Profile configuration policy using Microsoft Intune.


在 Intune 中,还可以包含第三方插件设置文件的自定义 XML。 In Intune, you can also include custom XML for third-party plug-in profiles.

自定义 XML