Index_D


D

3DES (Triple Data Encryption Standard), 42, 118

Data Encryption Standard (DES). See DES (Data Encryption Standard)

databases. See also SQL (Structured Query Language); SQL-XML (Structured Query Language/Extensible Markup Language)

IAS, 90, 95

log files, 279

troubleshooting, 279

dcpromo.exe, 132

Debug folder, 282

decryption, 42, 45. See also encryption

Demand-Dial Interface Wizard, 177, 198, 254

certificates, 207

deployment, 207

ISPs, 256

running, 254

site-to-site VPNs, 254, 256, 261, 264, 268, 306

static routing, 236

troubleshooting, 306

VPN routers, 207, 306

VPN servers, 263

demand-dial routing. See also Demand-Dial Interface Wizard; routing

authentication, 170

authorization, 170

clients, 170

configuring, 171, 217–220

connection endpoint addressing, 170

deployment, 217–220, 254–257, 261–265, 268–269

described, 169–172

dial-out hours, 174, 309

disabled, 309

filtering, 174, 184, 309

ISPs, 254, 256

restricting, 174

site-to-site VPNs, 217–220, 261–269, 297, 299, 302, 306–309

troubleshooting, 297, 299, 302, 306–309

unable to connect problems, 297, 299, 302

updates, 171

VPN routers, 177

demilitarized zone (DMZ). See DMZ (demilitarized zone)

Denial-of-Service (DoS) attacks. See DoS (Denial- of-Service) attacks

Deny Access option, 113, 199

deployment

AAA infrastructure, 112–119, 222–228

authentication, 270–272

certificates, 102–110, 206–214

Connection Manager, 128–140

described, 101, 205, 243

dial-up connections, 270–272

domain configuration, 248, 250, 252, 258, 266, 271

employee access, 249–251

extranets, 265–270

IAS, 113, 119

Internet infrastructure, 111–112, 214–215

intersite network infrastructure, 235–241

intranet infrastructure, 121–123

network configuration, 244–248

on-demand branch offices, 251–257

persistent branch offices, 257–265

remote access policy configuration, 248, 250, 253, 259–260, 267, 271

security configuration, 249

site network infrastructure, 228–235

smart cards, 106

VPN clients, 123–124, 250, 272

VPN routers, 214–222

VPN servers, 120–121, 244–249

DER Encoded Binary X.509 (cer) format, 209

DES (Data Encryption Standard), 42, 197

Destination Address page, 217, 221

Details option, 139

Details tab, 289, 290

DHCP (Dynamic Host Configuration Protocol)

authentication, 56

clients, 80

configuring, 179

Connection Manager, 132, 137

deployment, 121, 216, 246–247

Failover, 56

installing, 132

IPSec TM, 56

quarantine features, 132, 137

Relay Agent, 79, 137, 138, 180, 247

scope, 182

site-to-site VPNs, 179, 180, 182, 191, 216, 308

troubleshooting, 277, 286, 292, 308

VPN servers, 80, 121

DHCP Classless Static Routes DHCP option, 87

DHCPInform messages, 84, 181, 191

Dial In Credentials page, 218, 221

Dial Out Credentials page, 219, 222

Dial-In Constraints tab, 143, 173

Dial-In tab, 177, 200

Dial-Out Hours option, 174, 309

dial-up connections

AAA infrastructure, 89, 94

deployment, 270-272

ISPs, 69

VPN servers, 78, 91

dictionary attacks, 25, 47

Diffie-Hellman encryption, 92, 197. See also encryption

Digital Services-3 (DS-3). See DS-3 (Digital Services-3)

digital signatures, 45, 289, 304

directories, tracing, 281

divide-and-conquer approach, 277, 295

DMZ (demilitarized zone), 73, 186

DNS (Domain Name System). See also domains

address records, 112

configuring, 179

Connection Manager, 134, 136, 137, 148

deployment, 112, 120, 215, 246, 247

name resolution, 71

quarantine features, 134, 136, 137, 148

round-robin, 31, 81

scalability, 31

site-to-site VPNs, 179, 215

VPN servers, 81, 120

Do Not Export The Private Key option, 209

domain controllers, 287

Domain Name And DNS Servers page, 133

domains. See also DNS (Domain Name System)

AAA infrastructure, 198

adding computers to, 133

configuring, 248, 250, 252, 258, 266, 271

Connection Manager, 133–134

deployment, 248, 250, 252, 258, 266, 271

membership verification, 286

mixed-mode, 94, 286, 300

native-mode, 94, 286

quarantine features, 133–134

root, 287

site-to-site VPNs, 184, 198, 299, 300

troubleshooting, 286, 299, 300

unable to connect problems, 300

DoS (Denial-of-Service) attacks, 38, 43, 179. See also attacks; hackers

Drop All Packets Except Those That Meet The Criteria Listed Below option, 184

DS-3 (Digital Services-3), 244

Duplicate Template option, 151

DWORD values, 198, 291, 303, 305

Dynamic Host Configuration Protocol (DHCP). See DHCP (Dynamic Host Configuration Protocol)




Deploying Virtual Private Networks With Microsoft Windows Server 2003
Deploying Virtual Private Networks with Microsoft Windows Server 2003 (Technical Reference)
ISBN: 0735615764
EAN: 2147483647
Year: 2006
Pages: 128

Similar book on Amazon

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net