Terminal Services  «Prev  Next»

Lesson 7

Routing Remote Access Services Conclusion

In this lesson, we covered important information on how to setup and configure inbound and outbound connections from and to a RRAS server. You learned that when a RRAS server makes outbound connections it is in fact a RAS client. When the RRAS server is accepting calls, it is a RAS server. You saw that the RRAS server can accept calls via regular analog modem, or from a direct Internet connection. You learned how to setup and configure a VPN using the RRAS GUI interface. We saw how much easier it is to create a VPN using Windows 2000 versus using the Windows NT 4.0 RRAS Service. We also discussed how to create a direct cable connection for those times when you want to share data between two computers but don't have a network or infrared connection between the two. Now that you have completed this module, you should be able to:
  1. Create and configure a dial-up connection
  2. Create a connection to a VPN
  3. Create a direct cable connection to another computer
  4. Define and configure an Internet connection server
  5. Configure a VPN port
  6. Configure a modem and cable port

Routing and Remote Access Service (RRAS) in Windows Server 202

Routing and Remote Access Service (RRAS) is still available and fully supported in Windows Server 2022. While its primary function historically revolved around dial-up and VPN access, it retains several important uses within modern networks:
Key Uses of RRAS in Windows Server 2022
  • VPN Server: RRAS remains the go-to way to set up a VPN server within the Windows Server environment. This enables remote users to securely connect to your internal network over the internet. RRAS supports various VPN protocols like SSTP, L2TP/IPSec, and IKEv2.
  • NAT (Network Address Translation): RRAS provides NAT functionality, allowing you to share a single internet connection with multiple devices on your network. This is useful for basic scenarios or small private networks.
  • Basic Routing: RRAS can function as a software-based router, especially for scenarios where you don't have a dedicated hardware router.
  • DirectAccess: While DirectAccess is a legacy technology at this point, it was primarily configured and managed using RRAS on the server side.

Why RRAS Might Still Be Relevant
  • Existing Integration: If you have a legacy Windows Server environment that relies on RRAS for VPN or routing, upgrading to Server 2022 won't disrupt those functionalities.
  • Simple Setups: For smaller networks or less demanding scenarios, RRAS offers a straightforward way to implement basic VPN and routing without investing in and configuring a dedicated hardware appliance.
  • Cost-Effectiveness: RRAS is included in Windows Server, so you don't need additional licenses if you're primarily using it for VPN or basic NAT.

Considerations
  • Alternatives: For larger, more complex networks, dedicated routing appliances or specialized VPN solutions often provide better performance, scalability, and richer feature sets than RRAS.
  • Security: Pay careful attention to secure configuration of RRAS, especially when using it for VPN access. Choose strong protocols and enforce proper authentication methods.

New Terms

Here are some terms that might be new to you:
  1. Virtual Private Network: A VPN is a network that is created by using tunneling protocols's such as PPTP/MPPE or L2TP/IPSec.
  2. Network Address Translation (NAT): Private addresses cannot receive traffic from Internet locations. Therefore, if an intranet is using private addresses and communicating with Internet locations, the private address must be translated to a public address. A network address translator (NAT) is placed between an intranet that uses private addresses and the Internet, which uses public addresses. Outgoing packets from the intranet have their private addresses translated by the NAT into public addresses. Incoming packets from the Internet have their public addresses translated by the NAT into private addresses.
  3. Internet Connection Sharing (ICS): A Windows 2000 technology that allows multiple computers on a private network to connected to the public Internet via a single connection to the Internet.

In the next module, you will examine and create access policies.

Inbound Outbound Connections - Quiz

Click the Quiz link below to assess your understanding of some of the basic concepts of configuring inbound and outbound connections.
Inbound Outbound Connections - Quiz

SEMrush Software 7 SEMrush Banner 7