配置远程访问. 概述在 Windows 2000 中检测远程访问配置入站连接配置出站连接配置多链路连接配置身份验证协议配置加密协议为 DHCP 集成配置路由和远程访问.

Slides:

Advertisements

Similar presentations

Defining VLANs Implementing Trunks.

Advertisements

Using EAP-SIM for WLAN Authentication

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

4.1 Configuring Network Access Components of a Network Access Services Infrastructure What is the Network Policy and Access Services Role? What is Routing.

1 Routing and Remote Access Service (Week 15, Friday 4/21/2006) © Abdou Illia, Spring 2006.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.

DCN 多核防火墙快速配置之目的 NAT 配置神州数码网络蒋忠平.

Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

宝信多功能安全网关 —— eCop XSA 介绍体验安全、快速的 Internet 访问之旅. eCop XSA 安全设备是基于高级应用层防火墙、虚拟专用网络 (VPN) 和 Web 缓存的解决方案，它能够改善客户网络的安全和性能，并具有适应安全需求持续增长的可扩展性，为用户提供了完善、全面的边界防护解决方案。

实验二 vpn 实验格式： – 附件形式上交 – 课程名＋实验次数＋姓名＋学号上交日期 – 下次实验之前.

Chapter 8: Configuring Network Connectivity. Installing Network Adapters Network adapter cards connect a computer to a network. Installation –Plug and.

MCITP Guide to Microsoft Windows Server 2008 Server Administration (Exam #70-646) Chapter 10 Configuring Remote Access.

1 WLAN 的安装与配置西安交通大学计算机教学实验中心. 2 实验简要介绍  在本实验中，实验者通过安装、配置一个实用的 WLAN 能够：了解 WLAN 的构成掌握 WLAN 的安装和配置方法了解路由器的配置和使用了解交换机的使用掌握局域网的构建了解 WLAN 的应用场合.

Windows 2000 Remote Access. Remote Access Overview With Windows 2000 remote access, remote access clients connect to remote access servers and are transparently.

Remote Networking Architectures

Virtual Private Network (VPN) © N. Ganesan, Ph.D..

Overview of Routing and Remote Access Service (RRAS) When RRAS was implemented in Microsoft Windows NT 4.0, it added support for a number of features.

1 Chapter Overview Using Remote Access Using Virtual Private Networks Using NAT and ICS Using Terminal Services.

Module 11: Supporting Remote Users. Overview Establishing Remote Access Connections Connecting to Virtual Private Networks Configuring Authentication.

Chapter 11: Dial-Up Connectivity in Remote Access Designs

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.

1 Microsoft Windows NT 4.0 Authentication Protocols Password Authentication Protocol (PAP) Challenge Handshake Authentication Protocol (CHAP) Microsoft.

VPN Scenarios © N. Ganesan, Ph.D.. Chapter Objectives.

Windows Server 2003 RRAS 安裝設定與管理維護林寶森

Virtual Private Networks (Tunnels). When Are VPN Tunnels Used? VPN with PPTP tunnel Used if: All routers support VPN tunnels You are using MS-CHAP or.

Microsoft Windows Server 2003 TCP/IP Protocols and Services Technical Reference Slide: 1 Lesson 23 Virtual Private Networks (VPNs)

Windows Server 2008 Chapter 9 Last Update

酒店官方微博预订服务罗盘 HIMS 云计算为您提供技术支持让 “ 微博 ” 成为酒店营销的利器.

Guide to Operating System Security Chapter 9 Web, Remote Access, and VPN Security.

Configuring Routing and Remote Access(RRAS) and Wireless Networking

Virtual Private Network (VPN) SCSC 455. VPN A virtual private network that is established over, in general, the Internet – It is virtual because it exists.

Chapter 12 Chapter 12: Remote Access and Virtual Private Networks.

Module 9: Planning Network Access. Overview Introducing Network Access Selecting Network Access Connection Methods Selecting a Remote Access Policy Strategy.

12-Sep-15 Virtual Private Network. Why the need To transmit files securely without disclosing sensitive information to others in the Internet.

Module 6: Configuring and Troubleshooting Routing and Remote Access

- 浙江邮电职业技术学院 - PPP 协议《网络互联技术》计算机通信教研室周成纲点到点协议.

11.59 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

Inter-VLAN communication 胶州职教中心信息部李丰龙. Inter-VLAN communication 【 Lab Topology 】

Objectives Configure routing in Windows Server 2008 Configure Routing and Remote Access Services in Windows Server 2008 Network Address Translation 1.

1 Chapter Overview Installing the TCP/IP Protocols Configuring TCP/IP.

1 Chapter Overview Using the New Connection Wizard to configure network and Internet connections Using the New Connection Wizard to configure outbound.

- 浙江邮电职业技术学院 - Cisco 发现协议《网络互联技术》计算机通信教研室周成纲 Cisco Discovery Protocol.

1 Chapter 12: VPN Connectivity in Remote Access Designs Designs That Include VPN Remote Access Essential VPN Remote Access Design Concepts Data Protection.

VIRTUAL PRIVATE NETWORK By: Tammy Be Khoa Kieu Stephen Tran Michael Tse.

11.59 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

Examining Network Protocols. Overview Introduction to Protocols Protocols and Data Transmissions Common Protocols Other Communication Protocols Remote.

Hands-On Microsoft Windows Server Introduction to Remote Access Routing and Remote Access Services (RRAS) –Enable routing and remote access through.

Module 5: Configuring Access for Remote Clients and Networks.

Page 1 TCP/IP Networking and Remote Access Lecture 9 Hassan Shuja 11/23/2004.

© 1999, Cisco Systems, Inc. ICND—10-1 Chapter 8 IP 访问控制列表.

Computer Networks and Internets 《计算机网络与因特网》课件林坤辉

VLAN 间路由. vlan 10 vlan 20 vlan 30 VLAN 间路由 vlan 10 vlan 20 vlan 30.

超星数字图书馆一、页面的使用进入数字图书馆网页下载超星阅读器查找图书.

Remote Access Service (RAS) Amir A. Khan Department of Computer Engineering King Fahd University of Petroleum and Minerals Dhahran,

Using Routing and Remote Access Chapter Five. Exam Objectives in this Chapter:  Plan a routing strategy Identify routing protocols to use in a specified.

Computer Networks and Internets 《计算机网络与因特网》课件林坤辉

开放教育学员入学须知第一部分：浏览山东理工大学远程与继续教育学院网站浏览山东理工大学远程与继续教育学院网站第二部分：浏览中央电大教学平台浏览中央电大教学平台第三部分：浏览山东电大教学平台浏览山东电大教学平台第四部分：浏览淄博电大教学平台浏览淄博电大教学平台第五部分：淄博电大教学平台使用淄博电大教学平台使用.

U niversity of S cience and T echnology of C hina VxWorks 及其应用开发陈香兰年 7 月.

Configure and Security Remote Acess. Chapter 8 Advance Computer Network Lecture Sorn Pisey

参展主要内容以信息科技支撑现代农业为主题，包括精准农业、数字农业、农业物联网、农业遥感、信息服务 5 部分内容，重点展示科研院所、大专院校等单位的科研成果及应用示例。精准农业重点展示面向设施、果园、大田生产管理过程中的关键技术及智能装备，以精准施肥、施药、灌溉大型机具实物展示为主，同时将搭建微型温室（约.

Windows Vista Configuration MCTS : Advanced Networking.

远程访问策略是如何处理的 Are there policies to process? START Does connection attempt match policy conditions? Yes 拒绝尝试的连接 Is the Ignore User Dialin Properties attribute.

Module 9: Configuring Network Access

Microsoft Windows NT 4.0 Authentication Protocols

Configuring and Troubleshooting Routing and Remote Access

Chapter 12: Remote Access and Virtual Private Networks

1 安全体系结构曹天杰中国矿业大学计算机科学与技术学院. 2 安全体系结构安全体系结构的内容包括：提供安全服务与有关安全机制在本系统下的一般描述，这些服务和机制必须为本系统所配备；确定本系统内部可以提供这些服务的位置。一个信息系统安全体系结构的形成主要是根.

Presentation transcript:

配置远程访问

概述在 Windows 2000 中检测远程访问配置入站连接配置出站连接配置多链路连接配置身份验证协议配置加密协议为 DHCP 集成配置路由和远程访问

在 Windows 2000 中检测远程访问建立远程访问连接数据传输协议虚拟专用网络协议（ VPN ）

建立远程访问连接 LAN Protocols Remote Access Protocols Local Area Network LAN Protocols Remote Access Protocols Remote Access Protocols Internet Remote Access Client Remote Access Server

数据传输协议 Remote Access Client PPP SLIP (client only) Microsoft RAS ARAP (server only) TCP/IP NWLink NetBEUI AppleTalk Remote Access Protocols LAN Protocols

虚拟专用网络协议（ VPN ） ClientServer PPTP Internetwork Must Be IP Based No Header Compression No Tunnel Authentication Built-in PPP Encryption L2TP Internetwork Can Be IP, Frame Relay, X.25, or ATM Based Header Compression Tunnel Authentication Uses IPSec Encryption Internet PPTP or L2TP

配置远程访问连接配置远程访问服务配置虚拟专用网络端口配置调制解调器和电缆端口配置用户拨入设置

启动远程访问服务 Routing and Remote Access Server Status SERVERX (local) ActionView Configure and Enable Routing and Remote Access Disable Routing and Remote Access Delete Refresh Export List... Properties Help All Tasks View

配置虚拟专用网络端口 Routing and Remote Access ActionView Routing and Remote Access Server Status SERVERX (local) Ports Dial-In Clients (0) IP Routing Remote Access Policies NameDeviceCommentStatus Ports WAN Miniport (PPTP)(VPN3-4)VPNInactive WAN Miniport (PPTP)(VPN3-3)VPNInactive WAN Miniport (PPTP)(VPN3-2)VPNInactive WAN Miniport (PPTP)(VPN3-1)VPNInactive WAN Miniport (PPTP)(VPN3-0)VPNInactive WAN Miniport (L2TP)(VPN2-4)VPNInactive WAN Miniport (L2TP)(VPN2-3)VPNInactive WAN Miniport (L2TP)(VPN2-2)VPNInactive WAN Miniport (L2TP)(VPN2-1)VPNInactive WAN Miniport (L2TP)(VPN2-0)VPNInactive Direct Parallel (LPT1)PARALLELInactive Modem (COM 3)MODEMInactive PPTP Ports L2TP Ports Cable and Modem Ports

配置调制解调器和电缆端口 Ports Properties RAS Device Configuration In the list below, select those devices which can be used by the Routing and Remote Access Services. Devices: UsageDeviceTypeNum... Ras None WAN Miniport (PPTP) WAN Miniport (L2TP) Direct Parallel PPTP L2TP Parallel Configure Configure ports - WAN Miniport (PPTP) You can enable this device to accept inbound remote access requests and to enable demand-dial routing connections. Remote access (inbound) Demand-dial routing (inbound/outbound) Phone number of this device: Ports You can adjust the port limit for a device which supports dynamic ports (such as virtual circuits). Maximum ports: 5 OKCancel Ports, Grouped By Type Function of Port Phone Number (if applicable) Number of Virtual Ports

配置用户拨入设置 User1 Properties GeneralAddressAccountProfileTelephonesOrganization Member OfEnvironmentTimeouts Dial-in Remote Access Permission (Dial-in or VPN) Callback Options Apply Static Routes Allow access Deny access Control access through Remote Access Policy Verify Caller-ID: No Callback Set by Caller (Routing and Remote Access Service only) Always Callback to: Assign Static IP Address Define routes to enable for this Dial-in connection. OKCancel Apply Static Routes... Permissions Caller ID Callback IP Routing

配置出站连接考查硬件选项创建拨号连接连接到虚拟专用网通过电缆直接连接

考查硬件选项 Connection Methods PSTN ISDN Cable Modem X.25 Direct Connection

创建拨号连接 Network Connection Type You can choose the type of network connection... Network Connection Type You can choose the type of network connection... Network Connection Wizard Dial-up to private network Dial-up to the Internet Connect using my phone line (modem or ISDN) Connect to the Internet using my phone line (modem or ISDN) Client Remote Access Server Client ISP Server Internet

连接到虚拟专用网 Windows 2000 VPN Server Internet Adapter Intranet Adapter Corporate Intranet VPN Remote Access Client Internet Tunnel

通过电缆直接连接 Host Guest This computer has the information you want to access. Host or Guest To connect two computers, specify which one you are using. Host or Guest To connect two computers, specify which one you are using. Network Connection Wizard Choose the role you want for this computer This computer will be used to access information on the host computer. Select a Device This is the device that will be used to make the connection. Select a Device This is the device that will be used to make the connection. Network Connection Wizard Select a device: Communications Port (Com1) Communications Port (Com2) Direct Parallel (LPT1) Communications Port (Com1) Communications Port (Com2) Direct Parallel (LPT1) Communications Port (Com1)

配置身份验证协议标准身份验证协议可扩展的身份验证协议

标准身份验证协议 ProtocolProtocolSecuritySecurity PAP 低低 SPAP 中中 CHAP 高高 MS-CHAP 高高 Use when The client and server cannot negotiate using more secure validation Connecting a Shiva LANRover and Windows 2000–based client or a Shiva client and a Windows 2000–based remote access server You have clients that are not running Microsoft operating systems You have clients running Windows NT version 4.0 and later or, Microsoft Windows 95 and later MS-CHAP v2 MS-CHAP v2 高高 You have dial-up clients running Windows 2000, or VPN clients running Windows NT 4.0 or Windows 98

可扩展的身份验证协议允许客户和服务器协商他们将使用的身份验证方法支持所使用的身份验证 –MD5-CHAP – 传输层安全性 – 附加的第三方的身份验证方法确保支持通过 API 进行身份验证的方法

配置加密协议 Edit Dial-in Profile Dial-in ConstraintsIPMultilink AdvancedEncryptionAuthentication NOTE: These encryption settings apply only to the Windows 2000 Routing and Remote Access Service. Select the level(s) of encryption that should be allowed by this profile. No Encryption Basic Strong Strongest OKCancelApply Members of this group dial-in profile can use IPSec 56-bit Data Encryption Standard (DES) or MPPE 40-bit data encryption Members of this group dial-in profile can use IPSec 56-bit DES or MPPE 56-bit data encryption Members of this group dial-in profile can use IPSec Triple DES (3DES) or MPPE 128-bit data encryption

为 DHCP 集成配置路由和远程访问为 DHCP 集成配置路由和远程访问利用 DHCP 将 IP 地址分配给远程访问客户机为使用 DHCP 而配置路由和远程访问

利用 DHCP 将 IP 地址分配给远程访问客户机 If DHCP Server is Available If DHCP Server is Unavailable Remote Access Server Obtains 10 IP Addresses at a Time Remote Access Server Uses Automatic Private IP Addressing

为使用 DHCP 而配置路由和远程访问 GeneralSecurity IP PPPEvent Logging Enable IP routing Allow IP-based remote access and demand-dial connections IP address assignment This server can assign IP addresses by using: Dynamic Host Configuration Protocol (DHCP) Static address pool FromToNumberIP Add…Mask Add… Edit… Remove Use the following adapter to obtain DHCP, DNS, and WINS addresses for dial-up clients. Adapter: OKCancel Apply LONDON (local) Properties Corpnet:

复习在 Windows 2000 中检测远程访问配置入站连接配置出站连接配置身份验证协议配置加密协议为 DHCP 集成配置路由和远程访问