Routing and Remote Access Service



Similar documents
Experiment # 6 Remote Access Services

Defender EAP Agent Installation and Configuration Guide

Module 6. Configuring and Troubleshooting Routing and Remote Access. Contents:

CNW Re-Tooling Exercises

The safer, easier way to help you pass any IT exams. Exam : Administering Windows Server Title : Version : V16.

How To Set Up A Vpn Tunnel Between Winxp And Zwall On A Pc 2 And Winxp On A Windows Xp 2 On A Microsoft Gbk2 (Windows) On A Macbook 2 (Windows 2) On An Ip

Setup Guide for Exchange Server

Step-by-Step Guide for Setting Up VPN-based Remote Access in a

How to setup a VPN on Windows XP in Safari.

Palomar College Dial-up Remote Access

Using RADIUS Agent for Transparent User Identification

8 NETWORK SERVERS AND SERVICES FUNDAMENTALS

Configuring Microsoft RADIUS Server and Gx000 Authentication. Configuration Notes. Revision 1.0 February 6, 2003

Step-by-Step Guide for Creating and Testing Connection Manager Profiles in a Test Lab

Andover Continuum Remote Communication Configuration Guide

To install the SMTP service:

Configuring Global Protect SSL VPN with a user-defined port

Setup and Configuration Guide for Pathways Mobile Estimating

Enabling VPN on your VPS

Basic Exchange Setup Guide

Chapter 12 Supporting Network Address Translation (NAT)

RSA ACE/Agent 5.5 for Windows Installation and Administration Guide

How To Connect To An Egrabit With A Vpn On A Pc Or Mac Or Ipad (For Pc Or Ipa) With A Pv (For Mac) Or Ipv (Femalese) With An Ipv Or Ip

Configuring WPA-Enterprise/WPA2 with Microsoft RADIUS Authentication

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

CREATING AN IKE IPSEC TUNNEL BETWEEN AN INTERNET SECURITY ROUTER AND A WINDOWS 2000/XP PC

Configuring Network Load Balancing with Cerberus FTP Server

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

1 Getting Started. Before you can connect to a network

Cox Managed CPE Services. RADIUS Authentication for AnyConnect VPN Version 1.3 [Draft]

How to create a dialup connection to an S8X00 Media Server

How To Configure Windows Server 2008 as a RADIUS Server with MS-CHAP v2 Authentication

Chapter7 Setting the Receiving PC for Direct Upload. Setting the Receiving PC for Direct Upload For Windows For Macintosh...

NETWORK SETUP INSTRUCTIONS

Basic Exchange Setup Guide

AirStation VPN Setup Guide WZR-RS-G54

Deploying Windows Streaming Media Servers NLB Cluster and metasan

Configuring Outlook for Windows to use your Exchange

Attachment E ACCESSING THE FCC NETWORK USING WINDOWS 95/98 FOR ULS FILING

If you have questions or find errors in the guide, please, contact us under the following address:

Multi-factor Authentication using Radius

Step-by-Step Guide for Setting Up VPN-based Remote Access in a Test Lab

How to Setup PPTP VPN Between a Windows PPTP Client and the DIR-130.

Create, Link, or Edit a GPO with Active Directory Users and Computers

How to Guide: StorageCraft Cloud Services VPN

Installing Policy Patrol on a separate machine

Printing Options. Netgear FR114P Print Server Installation for Windows XP

Omni 56K USB Lite Quick Start Guide

Creating client-server setup with multiple clients

Understanding Windows Server 2003 Networking p. 1 The OSI Model p. 2 Protocol Stacks p. 4 Communication between Stacks p. 13 Microsoft's Network

MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # )

Step-by-Step Guide for Setting Up Network Quarantine and Remote Access Certificate Provisioning in a Test Lab

Installing the Microsoft Network Driver Interface

Configuration Task 3: (Optional) As part of configuration, you can deploy rules. For more information, see "Deploy Inbox Rules" below.

Moving the TRITON Reporting Databases

Active Directory integration with CloudByte ElastiStor

System Center Service Manager

Configure your firewall for administrative access via RADIUS authentication

pcanywhere Advanced Configuration Guide

Windows Dial Up Networking (DUN) for AirLink Modems Application Note - How To

System Area Management Software Tool Tip: Integrating into NetIQ AppManager

Sage HRMS 2014 Sage Employee Self Service Tech Installation Guide for Windows 2003, 2008, and October 2013

Configuring the Cisco ISA500 for Active Directory/LDAP and RADIUS Authentication

Cloud Attached Storage

Basic ViPNet VPN Deployment Schemes. Supplement to ViPNet Documentation

Understand Wide Area Networks (WANs)

WatchGuard Mobile User VPN Guide

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Installation and Configuration of VPN Software

Using LifeSize systems with Microsoft Office Communications Server Server Setup

VPN Solutions. Lesson 10. etoken Certification Course. April 2004

Deploying Remote Desktop Connection Broker with High Availability Step-by-Step Guide

7.1. Remote Access Connection

PRODUCT WHITE PAPER LABEL ARCHIVE. Adding and Configuring Active Directory Users in LABEL ARCHIVE

Tufts VPN Client User Guide for Windows

Network Load Balancing

How to add your Weebly website to a TotalCloud hosted Server

Creating a New Database and a Table Owner in SQL Server 2005 for exchange@pam

Application Note. Using a Windows NT Domain / Active Directory for User Authentication NetScreen Devices 8/15/02 Jay Ratford Version 1.

Chapter 2 Preparing Your Network

Deploying BitDefender Client Security and BitDefender Windows Server Solutions

Releasing blocked in Data Security

Network Setup Guide. 1 Glossary. 2 Operation. 1.1 Static IP. 1.2 Point-to-Point Protocol over Ethernet (PPPoE)

Working Remotely with Exchange Server

Using Microsoft Active Directory Server and IAS Authentication

Setting up DCOM for Windows XP. Research

Use 802.1x EAP-TLS or PEAP-MS-CHAP v2 with Microsoft Windows Server 2003 to Make a Secure Network

HTTP Server Setup for McAfee Endpoint Encryption (Formerly SafeBoot) Table of Contents

I. What is VPN? II. Types of VPN connection. There are two types of VPN connection:

NovaBACKUP xsp Version 15.0 Upgrade Guide

DESKTOP CLIENT CONFIGURATION GUIDE BUSINESS

Egnyte Single Sign-On (SSO) Configuration for Active Directory Federation Services (ADFS)

Active Directory Software Deployment

How to configure MAC authentication on a ProCurve switch

Please use only wired network connections to configure the Router.

Pre-lab and In-class Laboratory Exercise 10 (L10)

Microsoft IAS Configuration for RADIUS Authorization

P-660R-T1/T3 v2 Quick Start Guide

Transcription:

Routing and Remote Access Service (Week 15, Friday 4/21/2006) Abdou Illia, Spring 2006 1 Learning Objectives Introducing RRAS Enabling RRAS Configuring RRAS Monitoring RRAS Creating Remote Access Policies 2 Remote Access Service Remote Access Server Remote Access Server 3

Routing & Remote Access Service Modem LAN W2K Server NIC NIC Internet VPN ISP Client PC Modem 4 Enabling RRAS RRAS automatically installed during W2K server installation But RRAS is disabled by default You must enable RRAS and configure it to: Setup a network router Setup a RAS server Setup a Virtual Private Network (VPN) server 5 Enabling RRAS 1. Click Start/Programs/Administrative Tools 2. Click Routing and Remote Access 3. In the console tree, select the server on which you want to activate RRAS 4. Click Action/Configure and Enable Routing and Remote Access to open the RRAS setup wizard 5. Click Next to open the Common Configurations screen 6. Click Manually Configured Server to enable the server with default settings 7. Click Next, then Finish 8. When asked Do you want to start the RRAS?, click Yes. 6

Configuring RRAS When RRAS is manually enabled, the default settings apply. You can configure RRAS according to your requirements at a later date. To configure RRAS, you use the Properties dialog box (Right-click server, click Properties) 7 Configuring RRAS Note: Tabs depend on protocols installed on your server 8 General Security IP PPP Event Logging Configuring RRAS Used to specify whether server will be configured as a router for LAN only, as a router for a LAN and demand-dial routing, as a RAS, or both a router and a RAS Used to choose one of two types of authentication providers to validate remote access clients Used to specify settings for the IP protocols (e.g. method for distributing IP addresses to remote clients. Used to configure Point-to-Point Protocol to specify whether a remote client can establish multilink connections Used to manage and monitor a RRAS server by selecting the type of event to record. 9

Configuring RRAS 2. Right-click RRAS server and click Properties 3. Notice the default selections in the General tab. 4. Click the IP tab. Make sure that the Enable IP routing and the Allow IP-based remote access and demand-dial connections check boxes are selected. Note: if you allow IP routing, dialup clients can access the entire LAN. If you only want to allow dial-up clients to access resources on the RRAS server, clear this check box. 5. Click the Security tab. Windows Authentication is the default provider and Windows accounting is the accounting provider by default. 6. Click the Event Logging tab. You should select the Log the maximum amount of information option button and the Enable Point-to-Point (PPP) logging check box if you want to troubleshoot connection problems. 7. Click OK to close the Properties dialog box. 10 Monitoring RRAS In the server Status node in the Routing and Remote Access console, you can verify: the state of the server (started, Stopped, Paused) The type of server The number of ports in use The Up time (length of time server has been running since RRAS server was last started). The log files that contains the monitoring data are stored by default in the 11 Monitoring RRAS 2. Double-click the RRAS server to expand the node. Select Remote Access Logging. 3. Right-click Local File in the Details pane and click Properties 4. On the Settings tab of the Local File Properties dialog box, select Log Accounting Requests to capture accounting requests and responses 5. Select Log Authentication requests to capture authentication requests such as access-accept packets, and access-reject packets. 6. Click the Local File tab to specify a time period for the log file. 7. Click the Monthy option button in the New Log Time Period section 8. Click OK to close the Local File Properties dialog box. Note: Can use the Net Shell (Netsh) command-line utility to manage and troubleshoot RRAS. 12

Creating a Remote Access Policy Remote Access Policies are used to: Control what connections attempts will be rejected Determine which users can access the network and to prevent unauthorized access. Determine connection time, etc. Three components in Remote Access Policy: Conditions, Permissions, and Profile. Remote Access Policies are usually stored locally on the RRAS server. They are not stored in Active Directory. 13 Creating a Remote Access Policy 2. Double-click the RRAS server to expand the node, if necessary, and select the Remote Access policies node. Notice that there is a default policy named Allow access if dial-in permission is enabled. 3. Click Action/New Remote Access Policy to open the Add Remote Access Policy wizard. 4. Type Srvdcxx Remote Access Policy in the Policy Friendly name text box. 5. Click Next to open the Conditions screen. Click Add to open the Select Attribute dialog box. 6. Select Day-and-Time restrictions in the name column and click Add to open the Time of day constraints dialog box. 7. Restrict access to the RRAS to M-F from 9AM to 6PM. 14 Creating a Remote Access Policy (cont.) 8. Click OK 9. Click Add to reopen the Select Attribute dialog box. Double-click Windows-Groups to open the Groups dialog box. 10. Click Add... To open the Select Groups dialog box. Select Domain Users group of your domain and click Add 11. Click OK to close the Select Groups dialog box. Click OK to close the Groups dialog box. 12. Click Next to open the Permissions screen. 13. Select the Grant remote access permission option button. 14. Click Next to open the User profile screen. 15. Click Finish because we will not create the profile in this exercise. Note: Can use the Net Shell (Netsh) command-line utility to manage and troubleshoot RRAS. 15

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information