|
LAN connections to the Internet can be either routed or translated.
Windows Server 2003 supports NAT for translating addresses.
ICS is a simplified, limited version of NAT.
NAT is part of RRAS and can be installed using the Routing and Remote Access Server Setup Wizard or configured using the Routing and Remote Access management console.
VPNs can be either Internet-based (providing remote access to clients) or router-to-router (connecting two networks that are in geographically separate locations).
Router-to-router VPNs can use either persistent connections or demand-dial connections.
Demand-dial VPNs can use either one-way or two-way initiation.
VPN tunneling protocols include PPTP and L2TP.
RADIUS is the Internet standard for centralized authentication. IAS is the RADIUS server included with Windows Server 2003.
IAS provides centralized authentication, accounting, and auditing.
IAS integrates with RRAS and supports Remote Aaccess Policies.
IAS supports PPP-based authentication methods, such as MS-CHAP, as well as EAP.
Connection Manager is software you can use to make a connection, which automates much of the process for you. CMAK lets administrators use a Wizard to customize Connection Manager.
CMAK stores the choices you enter in a text file called a connection profile and compiles the information into a customized executable version of Connection Manager.
CMAK can be used to create connections for dial-up networks or for VPN clients.
Because the customized Connection Manager can include specific access information for the network, using CMAK creates security concerns, and distribution of the connection profile should be restricted.
|