Search This Blog

Friday, July 8, 2011

Accessing Internet through RRAS

RRAS [Routing and Remote Access Service] provides Multiprotocol LAN-to-LAN, LAN-to-WAN, virtual private network [VPN], Dial-up and NAT [network address translation] service.

We would use RRAS server to give internet access to our internal clients sitting on private network.
The RRAS server would be in a workgroup with two NIC. One is connected to Public Interface or internet facing NIC and second Private NIC connecting to the Private Network where our rest of the machines are present.

In this setup we have an internet Modem connected to Router which is NATting the IP address. The external NIC on RRAS server will have private IP address although it can be used to access internet and hence called Internet facing NIC.

We would be statically assigning the IP address to the Internal and External NIC on RRAS server.

1. Under Hyper-v manager, make sure Gateway Hyper-v machine is shutdown.

2. Make a right click on the Gateway Hyper-V and click on settings. Click on Add Hardware and on right hand side select Network Adapter and click Add.


3. Select the Network Adapted that is just added. From Network drop down select the External Switch and specify the static MAC address. The MAC address will populate itself. Click Apply and Ok.



4. Make Right click on Gateway Hyper-V and Click Start to turn on Hyper-V machine.

5. Login to the Hyper-V machine. If the hostname hasn’t been configured earlier, configure it now. You can do it via Server Manager.

6. Click on Start > Administrative Tools > Server Manager

7. Select Server Manager at Top. On right hand side, click on Change System Properties to change the Hostname of the server.

8. Click on View Network connections. For better understanding rename the network adapters to Private and Public. Select the network adapter, right click and select rename.

9. Assign Static IP address to Public and Private IP address. Select the Public NIC, right click, properties. Select Internet Protocol Version 4 (TCP/IPv4), click on properties and set the address

Public [the address can be different based on your environmnet]
IP: 10.0.0.198
Netmask: 255.0.0.0
Default Gateway: 10.0.0.1
DNS: 10.0.0.1

Private [NIC connecting to Internal private network]

IP: 192.168.0.1
Netmask: 255.255.255.0
Leave Default Gateway and DNS blank, click on Ok and Apply. Ignore the warning messages.
Installing and Configuring RRAS Role

1. Click on Start > Administrative Tools > Server Manager

2. Select Roles, Click on Add Roles, Select Network Policies and Access Services [RRAS is present under NPAS], Click Next

3. Click Next on Information Page and Select Routing and Remote Access Services



4. Click on Next, Click on Install and Click on Finish.

5. Click on Start > Administrative Tools > Routing and Remote Access. This will bring RRAS console

6. Select the server [hostname(local)]. Notice that Server has red down arrow which means that RRAS is not enabled and configured. Make a right click on it and Select Configure and Enable Routing and Remote Access. This will launch wizard. Click on Next

7. Select Custom Configuration, click Next.

8. Select LAN Routing and NAT and click Finish. Click on Start Service when prompted. This will configure the RRAS server and start the RRAS service. Notice that RRAS server will have a green up arrow denoting that server is enabled and configured.

9. Expand IPv4, Select NAT, make a right click on it and select New Interface. Select Public and click OK.



10. You will be prompted to Select Interface type. Select Public Interface connected to Internet and Select Enable NAT on this Interface. Click OK.



11. We are done now. Now our machines on Private NIC will be able to access Internet using RRAS server as a Gateway.

No comments:

Post a Comment