Configure the Way RRAS Assigns IP Addresses to VPN Clients
Applies To: Windows Server 2008 R2
You can use a DHCP server to assign IP addresses to VPN clients or you can configure an RRAS server to use a static pool of IP addresses for allocation to TCP/IP-based remote access and demand-dial connections. For more information, see RRAS and DHCP (https://go.microsoft.com/fwlink/?linkid=140605).
Membership in the local Administrators group, or equivalent, is the minimum required to complete this procedure.
To create a static IP address pool
Right-click the RRAS server name, and then click Properties. If you are using Server Manager, right-click Routing and Remote Access, and then click Properties.
On the Properties page, click the IPv4 tab.
Under IPv4 address assignment, click Static address pool.
Click Add.
In Start IP address, type a starting IP address.
Type either an ending IP address for the range in End IP address, or type the number of IP addresses in the range in Number of addresses, and then click OK.
Click OK, and then repeat steps 5 through 7 for as many ranges as you need to add.
To configure RRAS to use addresses from a DHCP server
Right-click the server name for which you want to create a static IP address pool, and then click Properties. If you are using Server Manager, right-click Routing and Remote Access, and then click Properties.
On the Properties page, click the IPv4 tab.
Under IPv4 address assignment, click Dynamic Host Configuration Protocol (DHCP).
Click OK to save your changes.
Additional considerations
If the static IP address pool consists of ranges of IP addresses that are for a separate subnet, then you need to either enable an IP routing protocol on the remote access server computer or add static IP routes consisting of the {IP Address, Mask} of each range to the routers of the intranet. If the routes are not added, then remote access clients cannot receive traffic from resources on the intranet.
If the DHCP server is on the same subnet as the RRAS server, then you do not have to configure the DHCP relay agent. RRAS can find DHCP servers on the same subnet by using broadcast network packets.