70-291: MCSE Manual for Dealing with a Microsoft Windows Server 2003 System, Improved Part 10: Remote Access.


86 views
Uploaded on:
Category: Fashion / Beauty
Description
70-291: MCSE Manual for Dealing with a Microsoft Windows Server 2003 System, Improved Part 10: Remote Access. Destinations. Depict the reason and components of Windows Server 2003 remote access capacities Empower and arrange Steering and Remote Access Administration as a dial-up server
Transcripts
Slide 1

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network, Enhanced Chapter 10: Remote Access

Slide 2

Objectives Describe the reason and elements of Windows Server 2003 remote access capacities Enable and design Routing and Remote Access Service as a dial-up server Enable and arrange Routing and Remote Access Service as a VPN Configure a remote access server Allow remote customers access to network assets Create and arrange remote access approaches Troubleshoot remote access Guide to MCSE 70-291, Enhanced

Slide 3

Remote Access Overview Allows versatile clients access to network assets on the inner system: including documents, printers, databases, and email Windows Server 2003 can be a remote access server Guide to MCSE 70-291, Enhanced

Slide 4

Dial-up Remote Access Oldest sort of remote access Allows two PCs to unite and exchange data utilizing modems and a telephone line V.90 standard permits transfers at 33.6 Kbps while v.92 permits transfers at 48 Kbps Main point of preference is accessibility Main disadvantage is velocity Guide to MCSE 70-291, Enhanced

Slide 5

VPN Remote Access Uses an open system to transmit private data Encryption is utilized Public system most normally utilized is Internet VPN is constrained to the system\'s pace access technique Advantage: fast and lessened upkeep Drawback: security danger displayed by permitting access to network assets from the Internet Guide to MCSE 70-291, Enhanced

Slide 6

Enabling and Configuring a Dial-up Server Windows Server 2003 uses Routing and Remote Access Service to go about as a dial-up server A modem must be introduced Windows Server 2003 endeavors to discover a modem through Plug and Play as a matter of course A modem can be physically arranged Guide to MCSE 70-291, Enhanced

Slide 7

Activity 10-1: Installing a Modem Objective: Install a modem on your server Use the Phone and Modem Options utility under Control Panel You are just reproducing the establishment of a modem here Guide to MCSE 70-291, Enhanced

Slide 8

Enabling RRAS for Dial-up Connections Management of RRAS is finished with the Routing and Remote Access snap-in A red bolt shows that RRAS is not began Routing and Remote Access Wizard is utilized to empower and design RRAS surprisingly A green bolt demonstrates RRAS is begun Guide to MCSE 70-291, Enhanced

Slide 9

Activity 10-2: Enabling RRAS as a Dial-up Server Objective: Configure RRAS on your server to go about as a remote access server Use Routing and Remote Access utility Right snap your server and pick the design alternative Proceed as the wizard trains Guide to MCSE 70-291, Enhanced

Slide 10

Dial-up Protocols LAN conventions upheld by RRAS for dial-up systems administration are: TCP/IP, IPX/SPX, and AppleTalk Remote access conventions bolstered by RRAS for dial-up systems administration are: PPP and SLIP The same conventions needed by LAN customers are additionally needed by dial-up customers Remote access conventions are just for dial-up and not VPN associations PPP has various favorable circumstances over SLIP including the capacity to consequently design IP data Guide to MCSE 70-291, Enhanced

Slide 11

Dial-up Protocols (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 12

Dial-up Protocols (proceeded with) PPP has a few choices that can be empowered to upgrade execution: Multilink Connections Dynamic Bandwidth LCP Extensions Software Compression Guide to MCSE 70-291, Enhanced

Slide 13

Dial-up Protocols (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 14

Activity 10-3: Creating a Dial-up Connection Objective: Configure your server with a dial-up association Start the New Connection Wizard Configure a SLIP: Unix Connection Guide to MCSE 70-291, Enhanced

Slide 15

Enabling and Configuring a VPN Server Windows Server 2003 uses RRAS as a VPN server All availability achieved through a customary system card Enabling VPN fulfilled utilizing Routing and Remote Access Server Setup Wizard Enabling parcel channels ought to just be picked if the server has numerous system cards with the separated card joined with the Internet and the unfiltered cards associated with VPN movement Guide to MCSE 70-291, Enhanced

Slide 16

Enabling and Configuring a VPN Server (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 17

Activity 10-4: Enabling RRAS as a VPN Server Objective: Enable RRAS as a VPN server Ensure your IP location is x.0.0.1 where x is understudy number and subnet cover is 255.0.0.0 Choose Disable Routing and Remote Access Choose Configure and Enable Remote Access Select VPN in the subsequent wizard and continue as educated Guide to MCSE 70-291, Enhanced

Slide 18

VPN Protocols PPTP and L2TP are upheld for VPN associations by Windows Server 2003 By default, 128 PPTP ports and 128 L2TP ports are given Can expand the quantity of ports or you can incapacitate a convention by setting the quantity of ports to zero PPTP is the most mainstream, generally bolstered, and can work through NAT L2TP can\'t give a VPN association alone Guide to MCSE 70-291, Enhanced

Slide 19

VPN Protocols (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 20

Activity 10-5: Modifying the Default Number of VPN Ports Objective: Reduce the quantity of PPTP and L2TP ports to 10 every Use Routing and Remote Access Utility Set greatest ports for WAN miniport (PPTP) to ten Set greatest ports for WAN miniport (L2TP) to ten Guide to MCSE 70-291, Enhanced

Slide 21

Configuring Remote Access Servers Default setup is by and large adequate for regular operations Can indicate regardless of whether the server is a remote access server Can control confirmation and logging Can determine regardless of whether the server is a switch for IP, and on the off chance that it permits IP-based remote access associations Can empower telecast name determination Guide to MCSE 70-291, Enhanced

Slide 22

Authentication Methods Windows Server 2003 can utilize various distinctive validation strategies: No Authentication Password Authenticated Protocol Shiva Password Authentication Protocol Challenge Handshake Authentication Protocol Microsoft Challenge Handshake Authentication Protocol Microsoft Challenge Handshake Authentication Protocol adaptation 2 Extensible Authentication Protocol Guide to MCSE 70-291, Enhanced

Slide 23

IP Address Management When dial-up and VPN customers interface with Windows Server 2003, they are appointed an IP address Options for DNS and WINS server are taken from the design of a predetermined interface on the remote access server Windows 2000 and more up to date customers can send a DHCPINFORM bundle after a remote access association has been built up Guide to MCSE 70-291, Enhanced

Slide 24

IP Address Management (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 25

IP Address Management (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 26

Allowing Client Access When remote access is initially designed on Windows Server 2003, none of the clients are conceded remote access consent Remote access authorization is controlled by their client object If RRAS does not partake in Active Directory, the client item is put away in the nearby client account database If RRAS has a place with an Active Directory space, the client article is put away in the Active Directory database situated on the area controller Guide to MCSE 70-291, Enhanced

Slide 27

Allowing Client Access (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 28

Activity 10-6: Allowing a User Remote Access Permission Objective: Create another client and permit it remote access authorization Use the Computer Management device Add another client Allow the recently made client dial-in access Guide to MCSE 70-291, Enhanced

Slide 29

Creating a VPN Client Connection VPN customers are typically designed on customer working frameworks, for example, Windows XP Windows Server 2003 can be arranged as a VPN customer VPN associations are made utilizing the New Connection Wizard Guide to MCSE 70-291, Enhanced

Slide 30

Creating a VPN Client Connection (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 31

Activity 10-7: Creating a Client VPN Connection Objective: Create a customer VPN association and afterward test it Use the New Connection Wizard Select Virtual Private Network Connection Allow all clients to utilize this association Enter fitting client name and watchword as taught Guide to MCSE 70-291, Enhanced

Slide 32

Configuring a VPN Client Connection Most arrangement is finished with the New Connection Wizard You can: Configure the IP location of the VPN server to which you are associating Configure regardless of whether an introductory association is made Configure dialing and redialing choices Specify if secret key and information encryption are obliged Configure the system design for VPN association Configure an Internet association firewall and Internet association sharing Guide to MCSE 70-291, Enhanced

Slide 33

Remote Access Policies Critical in controlling and permitting remote get to How the strategies are connected relies on upon whether the area is in blended or local mode Policies connected to a client may shift contingent upon the machine you are interfacing with To utilize remote access, you must comprehend: Remote access strategy segments Remote access strategy assessment Default remote access strategies Guide to MCSE 70-291, Enhanced

Slide 34

Remote Access Policies (proceeded with) Guide to MCSE 70-291, Enhanced

Slide 35

Remote Access Policy Components Composed of conditions, remote access authorizations, and a profile Conditions are criteria that must be met all together for remote access arrangement to apply to an association Remote access consent set in a remote access approach has just two choices: Deny or Grant remote access authorization The profile contains settings that are connected to a remote access association if the conditions have been coordinated and authorization has been permitted Guide to MCSE 70-291, Enhanced

Slide 36

Activity 10-8: Creating a Remote Access Policy Objective: Create another remote access strategy on your server

Recommended
View more...