MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 9 Network Policy and Access Services in Windows Server 2008.

Slides:



Advertisements
Similar presentations
5.1 Overview of Network Access Protection What is Network Access Protection NAP Scenarios NAP Enforcement Methods NAP Platform Architecture NAP Architecture.
Advertisements

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
Chapter 10 Securing Windows Server 2008 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration.
1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 4 Installing and Configuring the Dynamic Host Configuration Protocol.
Module 5: Configuring Access for Remote Clients and Networks.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.
Module 10: Configuring Virtual Private Network Access for Remote Clients and Networks.
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.
MCITP Guide to Microsoft Windows Server 2008 Server Administration (Exam #70-646) Chapter 10 Configuring Remote Access.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 8 Introduction to Printers in a Windows Server 2008 Network.
Virtual Private Network (VPN) © N. Ganesan, Ph.D..
Configuring Routing and Remote Access (RRAS) and Wireless Networking Lesson 5.
Chapter 11: Dial-Up Connectivity in Remote Access Designs
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.
1 Microsoft Windows NT 4.0 Authentication Protocols Password Authentication Protocol (PAP) Challenge Handshake Authentication Protocol (CHAP) Microsoft.
Chapter 6 Configuring, Monitoring & Troubleshooting IPsec
Virtual Private Networks (Tunnels). When Are VPN Tunnels Used? VPN with PPTP tunnel Used if: All routers support VPN tunnels You are using MS-CHAP or.
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
Network Services Lesson 6. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Setting up common networking services Understanding.
Module 3: Planning and Troubleshooting Routing and Switching.
Configuring Routing and Remote Access(RRAS) and Wireless Networking
CN2140 Server II Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
Chapter 20: Getting from the Office to the Road: VPNs BAI617.
1 Week #7 Network Access Protection Overview of Network Access Protection How NAP Works Configuring NAP Monitoring and Troubleshooting NAP.
Introduction to Networking Concepts. Introducing TCP/IP Addressing Network address – common portion of the IP address shared by all hosts on a subnet/network.
Module 8: Configuring Virtual Private Network Access for Remote Clients and Networks.
Module 9: Planning Network Access. Overview Introducing Network Access Selecting Network Access Connection Methods Selecting a Remote Access Policy Strategy.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 12: Routing.
Objectives Configure routing in Windows Server 2008 Configure Network Address Translation 1.
11.59 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,
70-411: Administering Windows Server 2012
Implementing Network Access Protection
Objectives Configure routing in Windows Server 2008 Configure Routing and Remote Access Services in Windows Server 2008 Network Address Translation 1.
Module 12: Routing Fundamentals. Routing Overview Configuring Routing and Remote Access as a Router Quality of Service.
Module 8: Designing Network Access Solutions. Module Overview Securing and Controlling Network Access Designing Remote Access Services Designing RADIUS.
20411B 8: Installing, Configuring, and Troubleshooting the Network Policy Server Role Presentation: 60 minutes Lab: 60 minutes After completing this module,
1 Chapter 12: VPN Connectivity in Remote Access Designs Designs That Include VPN Remote Access Essential VPN Remote Access Design Concepts Data Protection.
Module 11: Remote Access Fundamentals
VIRTUAL PRIVATE NETWORK By: Tammy Be Khoa Kieu Stephen Tran Michael Tse.
11.59 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,
Hands-On Microsoft Windows Server Introduction to Remote Access Routing and Remote Access Services (RRAS) –Enable routing and remote access through.
Module 9: Designing Network Access Protection. Scenarios for Implementing NAP Verifying the health of: Roaming laptops Desktop computers Visiting laptops.
Page 1 TCP/IP Networking and Remote Access Lecture 9 Hassan Shuja 11/23/2004.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 4 Installing and Configuring the Dynamic Host Configuration Protocol.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Internet Authentication Service.
Welcome Windows Server 2008 安全功能 -NAP. Network Access Protection in Windows Server 2008.
11 SECURING NETWORK COMMUNICATION Chapter 9. Chapter 9: SECURING NETWORK COMMUNICATION2 OVERVIEW  List the major threats to network communications. 
1 Week #5 Routing and NAT Network Overview Configuring Routing Configuring Network Address Translation Troubleshooting Routing and Remote Access.
Routing with Windows Server 2003 Chapter 9. Objectives for this Chapter Manage Routing And Remote Access routing interfaces Manage packet filters Manage.
Using Routing and Remote Access Chapter Five. Exam Objectives in this Chapter:  Plan a routing strategy Identify routing protocols to use in a specified.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 4: Planning and Configuring Routing and Switching.
1 Chapter 13: RADIUS in Remote Access Designs Designs That Include RADIUS Essential RADIUS Design Concepts Data Protection in RADIUS Designs RADIUS Design.
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.
Module 6: Network Policies and Access Protection.
Configure and Security Remote Acess. Chapter 8 Advance Computer Network Lecture Sorn Pisey
1 Welcome to Designing a Microsoft Windows 2000 Network Infrastructure.
Module 5: Network Policies and Access Protection
Configuring Routing and Remote Access (RRAS) and Wireless Networking Lesson 5.
Windows Vista Configuration MCTS : Advanced Networking.
KAPLAN SCHOOL OF INFORMATION SYSTEMS AND TECHNOLOGY IT375 Window Enterprise Administration Course Name – IT Introduction to Network Security Instructor.
Chapter 1 Introduction to Networking
Securing the Network Perimeter with ISA 2004
Configuring and Troubleshooting Routing and Remote Access
Presentation transcript:

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 9 Network Policy and Access Services in Windows Server 2008

Objectives Configure routing in Windows Server 2008 Configure Routing and Remote Access Services in Windows Server 2008 Describe Network Policy Server Discuss wireless networking with Windows Server 2008 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration 2

Configuring Routing in Windows Server 2008 Routing and Remote Access Services (RRAS) –Role service used to configure and manage network routing in Windows Server 2008 –Recommended for use in small networks that require simple routing directions –Not recommended for large and complex environments 3 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring Routing in Windows Server 2008 (continued) Activity 9-1: Installing a Windows Server 2008 Member Server Time Required: 75 minutes Objective: Install a Windows Server 2008 member server 4 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring RRAS as a Router Routers –Responsible for forwarding packets between subnets, or networks with differing IP addressing schemes 5 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

6

Configuring RRAS as a Router (continued) Activity 9-2: Installing RRAS on MSN-SRV-0XX and MSN-SRV-1XX Time Required: 15 minutes Objective: Install RRAS 7 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Working with Routing Tables Routing tables are composed of routes Routes –Direct data traffic to its destination based on the information it contains Routing tables –Can be managed in the RRAS console or from the command line using the route command 8 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Working with Routing Tables (continued) Activity 9-3: Viewing the Routing Table in RRAS Time Required: 5 minutes Objective: View the routing table in RRAS 9 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

10 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring Routes Static routing is limited for the following reasons –Requires manual creation and management –Should not be used on networks with more than 10 subnets –All affected routers require reconfiguration if the network changes 11 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring Routes (continued) Activity 9-4: Creating a Static Route Time Required: 15 minutes Objective: Create a static route from the command line 12 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring Routes (continued) Dynamic protocols –Route traffic based on information they discover about remote networks from other routers Routing Information Protocol version 2 (RIPv2) –Uses partner routers, or RIP neighbors, in determining the dynamic routes it can use for forwarding packets of data 13 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring a DHCP Relay Agent DHCP relay agent –Manages the communication between a network’s DHCP server and clients on subnets without a DHCP server With RRAS –Network adapters are added and configured to listen for DHCP broadcast messages 14 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring a DHCP Relay Agent (continued) Activity 9-5: Configuring MSN-SRV-0XX as a DHCP Relay Agent Time Required: 15 minutes Objective: Install a DHCP relay agent 15 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring Dial-on-Demand Routing Demand-dial routing –Allows a server to initiate a connection only when it receives data traffic bound for a remote network –Can use dial-up networks instead of more expensive leased lines 16 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring Remote Access Services in Windows Server 2008 Dial-up networking –Connects remote users to their networks using a standard phone line Virtual Private Networks –Allow client connections to your network from remote locations –Works by creating a secure tunnel for transmitting data packets between two points –VPN tunneling protocols: Point-to-Point Tunneling Protocol, Layer 2 Tunneling Protocol, Secure Socket Tunneling Protocol 17 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

18 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring Remote Access Services in Windows Server 2008 (continued) Activity 9-6: Installing Remote Access Support for VPNs in RRAS Time Required: 15 minutes Objective: Install Remote Access Support with VPN in RRAS 19 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

20 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Configuring Remote Access Services in Windows Server 2008 (continued) Activity 9-7: Configuring VPN Ports Time Required: 15 minutes Objective: Configure VPN ports 21 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Network Address Translation Allows you to shield internal IP address ranges from public networks by allowing internal clients to access the Internet through a shared IP address 22 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

23 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Introduction to Network Policy Server Network Policy Server (NPS) –Role service that provides a framework for creating and enforcing network access policies for client health –Can be used to perform: Configure a RADIUS server Configure a RADIUS proxy Configure and implement Network Access Protection (NAP) 24 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Windows Server 2008 Editions and the NPS Console NPS Console –Central utility for managing RADIUS clients and remote RADIUS servers Network health and access policies NAP settings for NAP scenarios Logging settings 25 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Windows Server 2008 Editions and the NPS Console (continued) Activity 9-8: Installing NPS Time Required: 15 minutes Objective: Install the NPS role service 26 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Windows Server 2008 Editions and the NPS Console (continued) Activity 9-9: Creating a Network Access Policy for VPN Connections Time Required: 15 minutes Objective: Create a network access policy 27 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Introduction to RADIUS RADIUS –Industry-standard protocol that provides centralized authentication, authorization, and accounting for network access devices Components of RADIUS –RADIUS clients –Network access servers –RADIUS proxy –RADIUS server –User account database 28 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

29 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

30 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

31 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

32 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

RADIUS Server Used on networks to perform authentication, authorization, and accounting for RADIUS clients RADIUS client –Can be an NPS, which replaces the IAS from previous versions of Windows Server 33 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

RADIUS Server (continued) RADIUS –Standardized network protocol that centralizes the following process for user connections Authentication Authorization Accounting 34 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

RADIUS Proxy NPS –Can be configured as a RADIUS proxy RADIUS proxies –Route RADIUS messages between RADIUS clients and RADIUS servers 35 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

NAP Network Access Protection (NAP) –Provides a tool for you to block external and internal network threats –Can be broken into three parts Health policy validation Health policy compliance Limited access 36 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Authentication Protocol Supported authentication protocols in Windows Server 2008 –Extensible Authentication Protocol–Transport Layer Security (EAP-TLS) –Protected Extensible Authentication Protocol– Transport Layer Security PEAP-TLS –Protected PEAP–Microsoft Challenge Handshake Authentication Protocol version 2 (PEAP- MSCHAPv2) 37 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Wireless Access Configuration in Windows Server x standard –Developed by the Institute of Electrical and Electronics Engineers (IEEE) On 802.1x networks –Network access control provides an authentication mechanism to allow or deny network access based on port connection 38 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Wireless Access Configuration in Windows Server 2008 (continued) Categories of EAP implementations –EAP over local area network (LAN) –EAP over wireless 802.1x uses a three-component model for authenticating access to networks –Supplicant –Authenticator –Authentication server 39 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

40 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Summary RRAS –Role service used to configure and manage network routing in Windows Server 2008 Routers –Responsible for forwarding packets between subnets, or networks with differing IP addressing schemes To process traffic –Router uses routing tables to determine where to send traffic MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration 41

Summary (continued) Routers –Use dynamic routing protocols and preconfigured static routes to deliver packets using the best route possible between two subnets Most modern networks –Support the passing of DHCP broadcast messages between subnets without a DHCP server to subnets that contain a DHCP server Demand-dial routing –Allows a server to initiate a connection only when it receives data traffic bound for a remote network MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration 42

Summary (continued) VPNs –Provide secure network access for remote clients over the Internet through the use of tunneling protocols NAT –Allows you to shield internal IP address ranges from public networks NAP –Provides a framework for you to block external and internal network threats 43 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.