Routing and remote access windows server

What changes in Routing and Remote Access Services and how to setup – Windows Server 2025

IT and Virtualization Consultant. Vladan is the founder, and executive editor of the ESX Virtualization Blog at vladan.fr. He is a VMware VCAP-DCA and VCAP-DCD, and has been a vExpert from 2009 to 2023.

Windows Server 2025 is the latest Microsoft Server Operating system released recently. The OS brings many new features and additions while also improves security. Through the evolution of the product, Microsoft also phasing out certain elements and protocols. Today, we’ll explore what Microsoft has changed in Routing and Remote Access Services (RRAS) compared to previous releases of Windows Server 2025 and we’ll run the process of installation and configuration of the component.

As you know, RRAS has been part of Windows Server family for a very long time. However, two of the protocols used, PPTP and L2TP, are not used by default for VPN connections, but rather the SSTP and IKEv2 connections are privileged. Yhe older PPTP and L2TP protocols can still be used, however, by default they are deactivated and rather the SSTP and IKEv2 connections are pre-configured for remote access.

If you do an in-place upgrade (yes, available for Windows Server 2025), the existing configurations keep its configuration and protocols for connections. For example, if you run Windows Server 2019 with PPTP and L2TP connections configured as VPN, then after upgrade to Windows Server 2025, those connections are still accepted.

Default configuration of RRAS protocols with Windows Server 2025

As you can see, the number of ports is zero for the L2TP and PPTP types of connections, meanings that the default, the number of ports is set to zero. It means that by default, RRAS setups don’t accept VPN connections based on PPTP and L2TP protocols. You can still use them if you want, but those type of connections aren’t secure and Microsoft is phasing out those two protocols. They are deprecated. Microsoft says that:

“Deprecation refers to the stage in the product lifecycle when a feature or functionality is no longer in active development and may be removed in future releases.”

What is RRAS good for?

RRAS with WS 2025 is good for remote administration and secure your remote VPNs, but many users prefer using dedicated hardware VPNs.

There might be use cases for both, hardware or software-based VPNs. Why not using the one provided by Microsoft while you already pay for CALs for your co-workers.

The Routing and Remote Access service (RRAS) supports remote user or site-to-site connectivity by using virtual private network (VPN) or dial-up connections.

When using a RRAS, you can deploy VPN connections and allow end users to connect your co-workers with remote access to your organization’s network. You can also create a site-to-site VPN connection between two servers at different locations.

If you’re using Hyper-V, you can also use RRAS as multitenant gateway where you have VMs Networks deployed with VLANs, then you can deploy RRAS in a VM which will be used as a software gateway and router that allows routing between cloud network traffic and virtual and physical networks.

Lastly, you can configure the RRAS Multitenant Gateway with Border Gateway Protocol used for dynamic routing where you can enable Network Address Translation (NAT) to provide Internet access for VMs on your VM networks.

What are system requirements for RRAS in Windows Server 2025?

The system requirements are similar to what they were in 2022 or 2019:

You’ll need to mee the hardware requirements (if you’re installing on physical box) first, then install WS 2025.
You’ll need to use an account with enough privileges (account in the local administrator’s group if the system is outside of a MS domain, or an account with administrative rights on the system).

How to Install and configure RRAS on Windows Server 2025

Open Server manager and start Add Roles and Features wizard. Then go ahead and:

Select Remote Access > Check Remote access in the roles section

Картинка с сайта: www.starwindsoftware.com

Check the box DirectAccess and VPN (RAS) and click the Add features button, with then add all the necessary tools the systems ask you for.
Follow the wizard and reboot the host at the end.
Open the RRAS console by typing RRAS in the search box. Then right click the node and select Configure and Enable Routing and Remote Access.

Configuration of RRAS in Windows Server 2025

After successful configuration, make sure that your firewall ports accept connections on 443 for SSTP and 500/4500 for IKEv2.
Make sure that the host has at least 2 Network interface cards (NICs).
Your host should not be a domain controller

For VPN access, your AD users should be configured with following:

Each user has to be enabled to use Dial-In. (In AD > User properties > Dial-In tab > Allow access under Network Access Permission).

Installation via PowerShell

Within the Microsoft documentation we can find that it is also possible to script the installation and there is a cmdlet.

Enter and run the following cmdlet:

Install-WindowsFeature DirectAccess-VPN -IncludeManagementTools

You should see the following output:

Now you’re done.

Final Words

By supporting modern VPN protocols like SSTP and IKEv2, RRAS ensures encrypted connections and reliable access to internal resources, making it ideal for hybrid and remote work environments.

When comparing software-based VPNs to hardware-based VPNs, several advantages become evident, such as that software-based solutions are generally cost-effective, easier to deploy and manage, and offer greater scalability. They also provide compatibility across various operating systems and devices. However, you should always proceed with some kind of proof of concept (POC) before implementing in production.

The choice between software and hardware VPNs depends also on the specific needs and resources of an organization. Microsoft RRAS and VPN is fairly popular between IT admins as it allows you to quickly setup a VPN without spending additional funds.

Источник

To Enable the Routing and Remote Access Service

Click Start, point to Administrative Tools, and then click Routing and Remote Access.
In the left pane of the console, click the server that matches the local server name. …
Right-click the server, and then click Configure and Enable Routing and Remote Access to start the Routing and Remote Access Server Setup Wizard. Click Next.

Full
Answer

How do I configure routing and remote access in Access Server Manager?

After you have deployed the Routing and Remote Access Service, access Server Manager, click Tools, and select Routing and Remote Access. In Routing and Remote Access, right-click the server, and select Configure and Enable Routing and Remote Access. When the setup wizard launches, click Next. Select Custom configuration and click Next .

How do I enable Lan routing in Windows Server 2003?

In Routing and Remote Access, right-click the server, and select Configure and Enable Routing and Remote Access. When the setup wizard launches, click Next. Select Custom configuration and click Next . Select LAN routing and click Next. On the summary page, click Finish. Click Start service and wait for the service to start.

How do I enable routing and remote access in Windows 10?

Click Start, point to Administrative Tools, and then click Routing and Remote Access. In the left pane of the console, click the server that matches the local server name. If the icon has a red arrow in the lower-right corner, the Routing and Remote Access service isn’t enabled.

How do I set up remote access to my server?

From the Server Manager Dashboard, select Manage> Add Roles and Features. Click Nextto display the Select Server Roleswindow. Select the Remote Accesscheck box. You might need to install additional roles. Click Nextuntil the Select Role Servicespage is displayed.

RRAS is a software router and an open platform for routing and networking. It offers routing services to businesses in local area network (LAN) and wide area network (WAN) environments or over the Internet by using secure VPN connections.

What does Routing and Remote Access do?

Routing and Remote Access Service (RRAS) is a Microsoft API and server software that makes it possible to create applications to administer the routing and remote access service capabilities of the operating system, to function as a network router.

How do I install Remote Access and routing in Windows 2016?

Steps: Enable routing on Microsoft Windows Server 2016 In Routing and Remote Access, right-click the server, and select Configure and Enable Routing and Remote Access. When the setup wizard launches, click Next. Select Custom configuration and click Next. Select LAN routing and click Next.

What is the difference between RAS and RRAS?

Microsoft Remote Access Server (RAS) is the predecessor to Microsoft Routing and Remote Access Server (RRAS). RRAS is a Microsoft Windows Server feature that allows Microsoft Windows clients to remotely access a Microsoft Windows network.

How do I enable Remote Access and routing?

Right-click the server, and then click Configure and Enable Routing and Remote Access to start the Routing and Remote Access Server Setup Wizard. Click Next. Click Remote access (dial-up or VPN) to permit remote computers to dial in or connect to this network through the Internet.

Can DHCP support Remote Access?

When you enable Dynamic Host Configuration Protocol (DHCP) to assign a static IP address to an onboard network interface during first-time setup, you can complete the configuration remotely by using an SSH client. If your system includes an e0M interface, the system broadcasts a DHCP request through it.

Can you use Windows Server as a router?

Windows Server 2012 R2 routing/NAT functionality feature is a part of Remote Access and allows for connecting 2 networks together, allowing a Windows machine with at least 2 NICs on 2 separate networks to handle the routing between them. To install this feature complete the steps below.

Is IIS required for RRAS?

RRAS: Features are managed in the Routing and Remote Access console. The Remote Access server role is dependent on the following features: — Web Server (IIS): Required to configure the network location server and default web probe.

What is Routing and Remote Access server 2016?

RRAS stands for Routing and Remote Access Service is a feature of Windows Server operating systems family that provides additional support for TCP/IP internetworking. RRAS makes it possible to create applications to administer the routing and remote access service capabilities of the operating system.

What is the main purpose of a RAS server?

A remote access server (RAS) is a type of server that provides a suite of services to remotely connected users over a network or the Internet. It operates as a remote gateway or central server that connects remote users with an organization’s internal local area network (LAN).

What is VPN and RAS?

RAS Gateway is a software router and gateway that you can use in either single tenant mode or multitenant mode. Single tenant mode allows organizations of any size to deploy the gateway as an exterior, or Internet-facing edge virtual private network (VPN) and DirectAccess server.

What are three examples of remote access locations?

What Is Remote Access?Queens College.Harvard University Extension School.

What can you do with Remote Access?

Remote computer access is the ability to access another computer or network that isn’t in your physical presence. Remote computer access allows an employee to access a computer desktop and its files from a remote location. This helps enable an employee who is working from home, for instance, to work effectively.

What is the main purpose of a RAS server?

What is Routing and Remote Access server 2016?

What is Remote Access port?

Remote Desktop Protocol (RDP) is a Microsoft proprietary protocol that enables remote connections to other computers, typically over TCP port 3389. It provides network access for a remote user over an encrypted channel.

What is NAT routing?

Routing is used for multiprotocol LAN-to-LAN, LAN-to-WAN, VPN, and network address translation (NAT) routing services.

What is a RRAS?

If you are using Hyper-V Network Virtualization or you have VM networks deployed with VLANs, you can deploy RRAS as a virtual machine (VM)-based software gateway and router that allows Cloud Service Providers (CSPs) and Enterprises to enable datacenter and cloud network traffic routing between virtual and physical networks, including the Internet.

How to install Remote Access as a LAN router?

To install Remote Access as a LAN router, either use the Add Roles and Features Wizard in Server Manager and select the Remote Access server role and the Routing role service; or type the following command at a Windows PowerShell prompt, and then press ENTER. Install-RemoteAccess -VpnType RoutingOnly.

What is always on VPN?

Always On VPN enables remote users to securely access shared resources, intranet Web sites, and applications on an internal network without connecting to a VPN. For more information, see RAS Gateway and Border Gateway Protocol (BGP).

What is web application proxy?

Web Application Proxy provides reverse proxy functionality for web applications inside your corporate network to allow users on any device to access them from outside the corporate network. Web Application Proxy pre-authenticates access to web applications using Active Directory Federation Services (AD FS), and also functions as an AD FS proxy.

Can you use remote access in Azure?

Using Remote Access in Microsoft Azure is not supported. You cannot use Remote Access in an Azure VM to deploy VPN, DirectAccess, or any other Remote Access feature in Windows Server 2016 or earlier versions of Windows Server. For more information, see Microsoft server software support for Microsoft Azure virtual machines.

How to start remote access?

Select Start service to start Remote Access. In the Remote Access MMC, right-click the VPN server, then select Properties. In Properties, select the Security tab and do: a. Select Authentication provider and select RADIUS Authentication.

How to install Remote Access Role in VPN?

On the VPN server, in Server Manager, select Manage and select Add Roles and Features. The Add Roles and Features Wizard opens. On the Before you begin page, select Next.

How to select a server from the server pool?

On the Select destination server page, select the Select a server from the server pool option. Under Server Pool, select the local computer and select Next. On the Select server roles page, in Roles, select Remote Access, then Next. On the Select features page, select Next. On the Remote Access page, select Next.

How many switches do you need to install VPN?

If you are installing the VPN server on a VM, you must create two External virtual switches, one for each physical network adapter; and then create two virtual network adapters for the VM, with each network adapter connected to one virtual switch.

What is NAS in a network?

A NAS is a device that provides some level of access to a larger network. A NAS using a RADIUS infrastructure is also a RADIUS client, sending connection requests and accounting messages to a RADIUS server for authentication, authorization, and accounting. Review the setting for Accounting provider: Table 1.

Can you assign a VPN to a pool?

Additionally, configure the server to assign addresses to VPN clients from a static address pool. You can feasibly assign addresses from either a pool or a DHCP server; however, using a DHCP server adds complexity to the design and delivers minimal benefits.

Is RRAS a router or a server?

RRAS is designed to perform well as both a router and a remote access server because it supports a wide array of features. For the purposes of this deployment, you require only a small subset of these features: support for IKEv2 VPN connections and LAN routing.

How to install Remote Access on DirectAccess?

On the DirectAccess server, in the Server Manager console, in the Dashboard, click Add roles and features. Click Next three times to get to the server role selection screen. On the Select Server Roles dialog, select Remote Access, and then click Next.

What group does DirectAccess belong to?

For a client computer to be provisioned to use DirectAccess, it must belong to the selected security group . After DirectAccess is configured, client computers in the security group are provisioned to receive the DirectAccess Group Policy Objects (GPOs) for remote management.

How to configure deployment type?

On the Remote Access server, open the Remote Access Management console: On the Start screen, type, type Remote Access Management Console, and then press ENTER. If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Yes.

Steps: Enable routing on Microsoft Windows Server 2016

We strongly recommend that you refer to the specific documentation for the Windows Server version that you are using.

Steps: Enable NAT on Microsoft Windows Server 2016

What domain is Remote Access Server?

The Remote Access server and all DirectAccess client computers must be joined to an Active Directory domain . DirectAccess client computers must be a member of one of the following domain types:

What happens when you configure a website on a remote server?

If the network location server website is located on the Remote Access server, a website will be created automatically when you configure Remote Access and it is bound to the server certificate that you provide. There are two certificate options for the network location server certificate: Private. Note.

How to join a remote server to a domain?

To join the Remote Access server to a domain. In Server Manager, click Local Server. In the details pane, click the link next to Computer name. In the System Properties dialog box, click the Computer Name tab, and then click Change.

What are DirectAccess settings?

The DirectAccess settings that are contained in the client computer Group Policy Object are applied only to computers that are members of the security groups that you specify when configuring Remote Access.

How many Group Policy Objects are required for remote access?

To deploy Remote Access, you require a minimum of two Group Policy Objects. One Group Policy Object contains settings for the Remote Access server, and one contains settings for DirectAccess client computers. When you configure Remote Access, the wizard automatically creates the required Group Policy Objects.

Does a website need to be on a high availability server?

Set up a website on a high availability server. The website does not require any content, but when you test it, you might define a default page that provides a message when clients connect. This step is not required if the network location server website is hosted on the Remote Access server.

Can you use Kerberos authentication on Remote Access Server 2012?

With Remote Access in Windows Server 2012 , you to choose between using certificates for computer authentication or using a built-in Kerberos authentication that uses user names and passwords. You must also configure an IP-HTTPS certificate on the Remote Access server. This section explains how to configure these certificates.

How to add a remote access service to a server?

1. Click on Manage and select Add Role and Features. 2. On the Before you begin page, click Next. 3. Select Role-based or feature-based installation and click Next. 4. Select a server from the server pool on which you want to install the Remote Access Service role, click Next. 5.

How to enable LAN routing?

To enable and configure LAN routing, open the Remote and Routing Access console using the Server Manager console. 13. Click on Tools and select Remote and Routing Access. 14. Select and right-click on the local server name and then select Configure and Enable Routing and Remote Access. 15.

What is CCNA routing?

Routing is the process of transferring data from one network to another by selecting the best path from all available paths.

Popular Posts:

1. hpe remote access

2. chromebook as work computeror remote access

3. palm beach state college remote access

4. linksys remote access settings

5. kaseya remote access log

6. how to setup vpn routing and remote access

7. android unattended remote access

8. quickbooks remote access sign in

9. how to turn on remote access

10. remote access android reviews

Источник

В этой статье посмотрим, как с помощью встроенных средств на базе сервера с Windows Server 2012 R2 организовать простой межсетевой маршрутизатор. И хотя на практике маршрутизаторы на базе компьютеров используются довольно редко (аппаратные маршрутизаторы, как правило, имеют более высокую производительность, надежность и несколько дешевле выделенного компьютера), в тестовых или виртуальных средах, когда нужно срочно настроить маршрутизацию между несколькими подсетями, маршрутизатор на базе Windows Server вполне себе приемлемое решение.

Итак, в роли маршрутизатора будет выступать сервер с ОС Windows Server 2012 R2. Сервер имеет 2 сетевых интерфейса: физических или виртуальных, если сервер запущен на гипервизоре. Каждому интерфейсу сервера назначен выделенный IP адрес из различных подсетей. Для удобства, мы переименовали названия сетевых интерфейсов в Панели управления сетями и общим доступом:

Сетевая карта 1 (сетевая карта подключена во внутреннюю LAN сеть):

Имя: LAN

IP: 10.0.1.1

Сетевая карта 2 (сетевая карта во внешней сети ):

Имя: Internet

IP: 192.168.1.20

Наша задача – организовать маршрутизацию пакетов из локальной подсети 10.0.1.0 во внешнюю подсеть 192.168.1.0 (как правило, такая сеть имеет выход в интернет) через NAT. Такую схему можно реализовать в случае необходимости организации доступа клиентов из внутренней сети в интернет.

Маршрутизация в Windows Server 2012 R2 реализуется на базе роли Remote Access (RRAS). Данная служба появилась еще в Windows Server 2003 и до текущей в версии Windows Server ее интерфейс и процесс настройки практически не изменился.

В первую очередь нужно установить роль Remote Access. Для этого откроем консоль Server Manager, выбираем Manage -> Add Roles and Features, находим и отмечаем роль Remote Access, в ее составе выбираем службу Routing, и, соглашаясь со всеми предложенными по умолчанию компонентами, запускаем ее установку (Install).

Установка службы маршрутизации на Windows Server 2012 R2

После окончания установки открываем консоль Routing and Remote Access (rrasmgmt.msc), щелкаем по имени сервера (с красной стрелкой) и выбираем Configure and Enable Routing and Remote Access.

Настройка службы RRAS в Windows Server 2012 r2

В открывшемся окне выбираем пункт Network Address Translation (NAT).

RRAS включаем Network Address Translation (NAT)

На следующей шаге (NAT Internet Connection) нужно выбрать сетевой интерфейс, подключённый ко внешней сети / Интернету (в нашем примере это интерфейс Internet с ip 192.168.1.20). Этот интерфейс будет «публичным интерфейсом» нашего NAT роутера.

Далее будет предложено указать должен ли NAT роутер обеспечить клиентов внутренней сети сервисами DHCP и DNS. Как правило, этот функционал во внутренней сети уже имеется, поэтому в нем мы не нуждаемся.

На этом базовая настройка маршрутизации на Windows Server 2012 R2 завершена. Сервер уже должен выполнять маршрутизацию пакетов между двумя подключенными сетями и выполнять трансляцию сетевых адресов (NAT).

Чтобы в этом убедиться, в консоли RRAS откройте свойства сервера. На вкладке General показано, что IPv4 маршрутизация включена (т.е. пакеты IPv4 будут пересылаться с одной сетевой карты на другую).

Проверить работу маршрутизации можно, указав на клиентском компьютере во внутренней сети (к которой подключен интерфейс сервера LAN) в качестве шлюза IP-адрес сервера (10.0.1.1), и выполнить ping или трассировку маршрута к ресурсу, расположенному во внешней сети или интернете. Эти попытки должны быть успешными.

Простейший роутер на базе Windows Server 2012 R2

Примечание. Windows Server 2012 R2 поддерживает статическую маршрутизацию, протокол динамической маршрутизации RIPv2 и BGPv4. Поддержка OSPF была прекращена еще в Windows Server 2008.

В нашем случае на сервере осуществялется статическая маршрутизация. Если нужно добавить новый маршрут, щелкните ПКМ по Static Routes, выберите пункт меню New static route и создайте новое статическое правило маршрутизации.

Примечание. Статический маршрут также можно добавить из командной строки с помощью команд Route или netsh.

Источник

Время на прочтение2 мин

Количество просмотров88K

Покопавшись по просторам интернета в поисках софта для построения своего собственного VPN, постоянно натываешься на кучу гайдов связанных с неудобным в настройке и использовании OpenVPN, требующим проприетарного клиента Wireguard, только один SoftEther из всего этого цирка отличается адекватной реализацией. Но мы расскажем, так сказать, о нативной для Windows реализации VPN – Routing And Remote Access (RRAS).

По странной причине, никто ни в одном гайде не написал про то, как это все развернуть и как включить на нем NAT, поэтому мы сейчас все исправим и расскажем, как сделать свой собственный VPN на Windows Server.

Ну а уже готовый и преднастроенный VPN можно заказать из нашего маркетплейса, он кстати работает из коробки.

1. Устанавливаем службы

Сначала, нам понадобится Windows Server Desktop Experience. Установка Core нам не подойдет, ибо отсутствует компонент NPA. Если компьютер будет членом домена, можно остановиться и на Server Core, в таком случае все это дело можно уложить в гигабайт ОЗУ.

Нам нужно установить RRAS и NPA (Network Policy Server). Первый нам понадобится для создания туннеля, а второй нужен в случае если сервер не является членом домена.

В выборе компонентов RRAS выбираем Direct access and VPN и Routing.

2. Настраиваем RRAS

После того, как мы установили все компоненты и перезагрузили машину, нужно приступить к настройке. Как на картинке, в пуске, находим диспетчер RRAS.

Через эту оснастку мы можем управлять серверами с установленным RRAS. Жмем правой кнопкой мыши, выбираем настройку и переходим.

Пропустив первую страницу переходим к выбору конфигурации, выбираем свою.

На следующей странице нам предлагается выбрать компоненты, выбираем VPN и NAT.

Далее, далее. Готово.

Теперь нужно включить ipsec и назначить пул адресов, который будет использовать наш NAT. Жмем правой кнопкой мыши по серверу и переходим в свойства.

Первым делом вводим свой пароль для l2TP ipsec.

На вкладке IPv4 обязательно нужно установить выдаваемый клиентам диапазон ip адресов. Без этого NAT не заработает.

Теперь осталось добавить интерфейс за NAT. Переходим в подпункт IPv4, жмем правой кнопкой мыши по пустому месту и добавляем новый интерфейс.

На интерфейсе (тот который не Internal) включаем NAT.

3. Разрешаем правила в брандмауэре

Тут все просто. Нужно найти группу правил Routing and Remote Access и включить их всех.

4. Настраиваем NPS

Ищем в пуске Network Policy Server.

В закладках, где перечислены все политики, нужно включить обе стандартные. Это разрешит всем локальным пользователям подключение к VPN.

5. Подключаемся по VPN

Для демонстрационных целей выберем Windows 10. В меню пуск ищем VPN.

Жмем на кнопку добавления подключения и переходим в настройки.

Имя подключения задавайте какое вам хочется.
IP адрес – это адрес вашего VPN сервера.
Тип VPN – l2TP с предварительным ключом.
Общий ключ – vpn (для нашего образа в маркетплейсе.)
А логин и пароль — это логин и пароль от локального пользователя, то есть от администратора.

Жмем на подключение и готово. Вот и ваш собственный VPN готов.

Надеемся, наш гайд даст еще одну опцию тем, кто хочет сделать свой собственный VPN не связываясь с Linux или просто хочет добавить шлюз в свою AD.

Источник

From Wikipedia, the free encyclopedia

Routing and Remote Access Service (RRAS) is a Microsoft API and server software that makes it possible to create applications to administer the routing and remote access service capabilities of the operating system, to function as a network router. Developers can also use RRAS to implement routing protocols. The RRAS server functionality follows and builds upon the Remote Access Service (RAS) in Windows NT 4.0.^[1]

RRAS was introduced with Windows 2000 and offered as a download for Windows NT 4.0.

Multiprotocol router — The computer running RRAS can route IP, IPX, and AppleTalk simultaneously. All routable protocols are configured from the same administrative utility. RRAS included two unicast routing protocols, Routing Information Protocol (RIP) and Open Shortest Path First (OSPF) as well as IGMP routing and forwarding features for IP multicasting.
Demand-dial router — IP and IPX can be routed over on-demand or persistent WAN links such as analog phone lines or ISDN, or over VPN connections.
Remote access server — provides remote access connectivity to dial-up or VPN remote access clients that use IP, IPX, AppleTalk, or NetBEUI.

Routing services and remote access services used to work separately. Point-to-Point Protocol (PPP), the protocol suite commonly used to negotiate point-to-point connections, has allowed them to be combined.

RRAS can be used to create client applications. These applications display RAS common dialog boxes, manage remote access connections and devices, and manipulate phone-book entries.^[2]

Routing and Remote Access Service Management Pack

[edit]

The Routing and Remote Access Service Management Pack helps a network administrator monitor the status and availability of computers running Windows Server 2008 R2.^[3]

Features introduced in Windows Server 2008

[edit]

Server Manager – Application used to assist system administrators with installation, configuration, and management of other RRAS features.
Secure Socket Tunneling Protocol
VPN enforcement for Network Access Protection – Limits VPN connections to defined network services.
IPv6 support – added PPPv6, L2TP, DHCPv6, and RADIUS technologies allowing them to work over IPv6.
New cryptographic support – strengthened encryption algorithms to comply with U.S. government security requirements, in addition to removing algorithms which could not be strengthened.^[4]

Removed technologies

[edit]

Bandwidth Allocation Protocol (BAP) was removed from Windows Vista, and disabled in Windows Server 2008.
X.25.
Serial Line Internet Protocol (SLIP). SLIP-based connections will automatically be updated to PPP-based connections.
Asynchronous Transfer Mode (ATM)
IP over IEEE 1394
NWLink IPX/SPX/NetBIOS Compatible Transport Protocol
Services for Macintosh
Open Shortest Path First (OSPF) routing protocol component in Routing and Remote Access
Basic Firewall in RRAS (replaced with Windows Firewall)
Static IP filter APIs for RRAS (replaced with Windows Filtering Platform APIs)
The SPAP, EAP-MD5-CHAP, and MS-CHAP authentication protocols for PPP-based connections.^[4]

Remote Access Service

^ RRAS MSDN Library
^ Routing and Remote Access Service MSDN
^ RRAS Management Pack Guide for System Center Operations Manager 2007
^ ^a ^b What’s New in Routing and Remote Access in Windows Server 2008

Tech FAQ

Источник