I hava a Cisco 3400 ME with single physical port available for cable connection.The ISP give me an interface IP = 89.120.29.89 for act as gateway for host IP, which is next in sequence 89.120.29.90.The host computer is a dual Xeon computer with two NIC cards one for LAN and one for WAN.
The scopes : to install a windows 2008 server R2 between public network and private network.
The desired configuration :
To have WS2008R2 installed with his roles behind a RRAS a. without VPN ; b. with VPN and to have WAN access for client computers from private LAN have Windows 7 OS.(The LAN pool of address 192.168.0.1-255).
First step : To have internet access in browser (I use Google chrome) (no take to consider DNS or AD rolesi reinstalled a clean windows 2008 server no dns or AD roles installed ,only RRAS role single role installed , the simplest role configuration)
Network configuration :
WAN NIC, on top of link stack in Control Panel/Network and Sharing Connections:
Host IP : 89.120.29.90 Mask : 255.255.255.252 Gateway : 89.120.29.89
DNS : 193.231.100.130 my ISP name server address .
Ok , i can browse on internet.
Second Step.
Server WAN NIC which is connected directly to Cisco Router :
Local Area Conection 3
Properties :
Client for Microsoft Netwaork : not checked
Network Load Balancing : not checked
File and Printer Shared : not checked
QoSPacketScheduler : not checked ;
Microsoft Network Monitor 3 Driver : not checked
IPv4 : checked
Link Layer Topology Mapper I/O driver : checked
Link Layer Discover Responder : checked
IPv4 Tab
Host IP : 89.120.29.90
Mask : 255.255.255.252
Gateway : 89.120.29.89
DNS : 193.231.100.130 my ISP name server address .
under Advanced Tab
IP settings : same that in IPV4 Tab with Automatic metric checked ;
DNS Tab :
Append primary and connection specific DNS suffixes : not checked
Append parent suffixes of the primary DNS suffixes : not checked
Append this DNS suffixes : none
Register this connection addresses in DNS : not checked ;
Use this connection DNS suffixes in DNS registration : not checked ;
WINS tab : Enable LMHOST lookup : not checked
Enable NetBios over TCP IP : not check ;
Disable NetBios over TCP IP : checked ;
Local area connection 2
Properties :
Client for Microsoft Netwaork : checked
Network Load Balancing : no
File and Printer Shared : checked
QoS Packet Scheduler : not checked ;
Microsoft Network Monitor 3 Driver : no checked
IPv4 checked
Link Layer Topology Mapper I/O driver : checked
Link Layer Discover Responder : checked
IPv4 Tab
LAN NIC :192.168.0.101
Mask :255.255.255.0
Gateway :192.168.0.1
under Advanced Tab :
IP settings: same that in IPV4 Tab with Automatic metric checked ;
DNS Tab :
Append primary and connection specific DNS suffixes : checked
Append parent suffixes of the primary DNS suffixes : not checked
Append this DNS suffixes : none
Register this connection addresses in DNS : checked ;
Use this connection DNS suffixes in DNS registration : checked ;
WINS tab : Enable LMHOST lookup : not checked
Enable NetBios over TCP IP : check ;
Disable NetBios over TCP IP : not checked ;
Install RRAS as Network Address Translation (NAT) under no condition imposed by DHCP(not installed) in ideea that RRAS will generate the private IP by DHCP allocator. Anyway, for the beginning i have a fix IP, not obtained IP in automated way.At this point , we have the simple posible configuration for RRAS follows :
Lan Connection 3 which corespond to WAN interface-IP :
"Configured NAT for the following Internet interface:Local Area Connection 3
Clients on the local-area network will be assigned IP addresses from the following range:
network address:192.168.0.0; network mask 255.255.0.0".
After the RRAS windows is opened :
Under Network Interfaces tab :
Both Nic are enabled and connected ;
Remote Access Logging & Policies :
Launch NPS ,
under NPS tab :
Authorize to Active Directories succesful :
Properties : authentification : port 1812,1645
accountin port 1813,1646 ;
under Accounting tab : nothing ;
under NPS policies:
Grant permission for RRAS server under builin\Administrator accounts ;
Policy enabled and type of server unspecified (NAT do not exist as entry in server drop dwn list)
under static route : nothing ;
under IPv4 /General tab both connection are there(there IP) and are up
under NAT
Local area connection 3 : public interface connected to internet
enable NAT on this interface :
under address pool : ISP public addresses ;(two addresses)
under service and ports : Web Server : http 80 ;
( i have i mind a static IP for client computer ; i configure a single client).
At client computer :
configured as domain client and added to AD Users and AD computer
logon to domain :
Local Area Conection
Properties :
Client for Microsoft Netwaork : checked
Network Load Balancing : not checked
File and Printer Sharing : checked
QoS Packet Scheduler : checked ;
Microsoft Network Monitor 3 Driver : not checked
IPv4 ; checked
Link Layer Topology Mapper I/O driver : checked
Link Layer Discover Responder : checked
IPv4 Tab
Host IP : 192.168.0.101
Mask : 255.255.0.0
Gateway :
DNS : (added automated the same as local machine ) .
under Advanced Tab
IP settings : same that in IPV4 Tab with Automatic metric checked ;
DNS Tab :
Append primary and connection specific DNS suffixes : checked
Append parent suffixes of the primary DNS suffixes : not checked
Append this DNS suffixes : none
Register this connection addresses in DNS : checked ;
Use this connection DNS suffixes in DNS registration : checked ;
WINS tab : Enable LMHOST lookup : not checked
Enable NetBios over TCP IP : checked ;
Disable NetBios over TCP IP : not checked ;
at this moment the client 192.168.0.101 can not connect to internet through RRAS.