français
Deutsch
español
italiano
A guide to routing and remote access
/wedata%2F0019701%2F%2Favatar-1303206970.jpg){kind=avatar}
Kev
The Windows server edition operating system allows you to set up a computer to act as a router on your network. This can provide remote access to your network and to users outside your network. In this article, we'll cover the basics of how to use routing and remote access services (RASS) and how it can be used to configure services like NAT, dialup and firewalls.
/wedata%2F0019701%2F2011-07%2F1-Printing-in-networks--Source--Author-ThinPrint-A.jpg)
Getting up and running
For large organisations, the ability to allow their employees to work from home or in the field is an essential feature of their network. Steps to follow Despite the extra power of the windows network access server edition, on the surface, it looks exactly like normal windows. Start by clicking on the start menu and selecting administrative tool, then routing and remote access. At this point, you'll need to enable it on your server. Do this by right clicking on your server from the left hand menu and choose "configure and enable RRAS". When you have done this, you will be presented with a set up wizard that will allow you to configure you windows VPN (virtual private network). The next step is to select the adapter that interfaces directly with the internet and click next. It is best to have a hardware firewall between your network and the internet but it is possible to use basic software firewall services from within windows.
Working with clients
Remote users In networking terms, a client is another computer which interfaces with your network. In the case of a VPN, this would be a remote user. In order to be able to work with your local network, these remote users need to be assigned IP addresses. To do this, the best way is to use your network's DHCP. Bear in mind that remote access users' IP addresses will always be different with DHCP. If you want to assign permanent IP addresses for tracking purpose then you will need to provide RRAS with a specific range of IP addresses. From the routing and remote access window you are then able to configure a huge array of services, including NAT and firewalls. As there have been many security holes in windows server editions in the past, it is essential that you keep on top of your system updates and make sure that you always have the latest edition of any patches. However, remember that there is no substitute for connecting your windows server to the internet through a proper hardware firewall. This will significantly reduce you chances of attack and should the worst happen, a hardware unit will have a much better chance of protecting your network and all of your users.
/wedata%2F0031678%2F2011-07%2FOverwhelmed-at-the-office.jpg)
/wedata%2F0027597%2F2011-08%2FWorkstation.jpg)
/wedata%2F0029265%2F2011-07%2FXerox.jpg)
/wedata%2F0029907%2F2011-07%2FHome-Computer-Workstation.jpg)