DirectAccess serveri paigaldamine ja haldamine Windows Server operatsioonisüsteemis: Difference between revisions
No edit summary |
|||
Line 2: | Line 2: | ||
'''DirectAccess''' is a new feature in [[Windows 7]] (Ultimate and Enterprise editions only) and [[Windows Server 2008 R2]] that provides seamless [[intranet]] connectivity to DirectAccess client computers when they are connected to the Internet. Unlike most traditional [[virtual private network|VPN]] connections<!--NetMotion allows an automatic connection, this statement is not always true--><!--Ben Ari: the previous comment is irrelevant, as the text says 'most', not all-->, which must be initiated and terminated by explicit user action, DirectAccess connections is designed to connect automatically as soon as the computer connects to the internet. In 2010, [[Microsoft Forefront Unified Access Gateway]] was released, which simplifies<ref>[http://www.microsoft.com/UAG Microsoft Forefront Unified Access Gateway 2010]</ref><ref name="UAGNOTREQUIRED">[http://blogs.technet.com/windowsserver/archive/2009/07/15/got-directaccess-get-uag.aspx Windows Server Division WebLog]</ref><ref>[http://www.portcullissystems.com Portcullis Systems UAG DirectAccess Appliance]</ref> the deployment of DirectAccess, and includes additional components that make it easier to integrate without the need to deploy [[IPv6]] on the network. | '''DirectAccess''' on uus võimalus Windows 7 (Ultimate ja Enterprise versioonid ainult) ja Windows Server 2008 R2 operatsiooni süsteemidel. | ||
is a new feature in [[Windows 7]] (Ultimate and Enterprise editions only) and [[Windows Server 2008 R2]] that provides seamless [[intranet]] connectivity to DirectAccess client computers when they are connected to the Internet. Unlike most traditional [[virtual private network|VPN]] connections<!--NetMotion allows an automatic connection, this statement is not always true--><!--Ben Ari: the previous comment is irrelevant, as the text says 'most', not all-->, which must be initiated and terminated by explicit user action, DirectAccess connections is designed to connect automatically as soon as the computer connects to the internet. In 2010, [[Microsoft Forefront Unified Access Gateway]] was released, which simplifies<ref>[http://www.microsoft.com/UAG Microsoft Forefront Unified Access Gateway 2010]</ref><ref name="UAGNOTREQUIRED">[http://blogs.technet.com/windowsserver/archive/2009/07/15/got-directaccess-get-uag.aspx Windows Server Division WebLog]</ref><ref>[http://www.portcullissystems.com Portcullis Systems UAG DirectAccess Appliance]</ref> the deployment of DirectAccess, and includes additional components that make it easier to integrate without the need to deploy [[IPv6]] on the network. | |||
==Tehnoloogia== | ==Tehnoloogia== |
Revision as of 17:14, 28 March 2011
Artur Kulikov
DirectAccess on uus võimalus Windows 7 (Ultimate ja Enterprise versioonid ainult) ja Windows Server 2008 R2 operatsiooni süsteemidel.
is a new feature in Windows 7 (Ultimate and Enterprise editions only) and Windows Server 2008 R2 that provides seamless intranet connectivity to DirectAccess client computers when they are connected to the Internet. Unlike most traditional VPN connections, which must be initiated and terminated by explicit user action, DirectAccess connections is designed to connect automatically as soon as the computer connects to the internet. In 2010, Microsoft Forefront Unified Access Gateway was released, which simplifies[1][2][3] the deployment of DirectAccess, and includes additional components that make it easier to integrate without the need to deploy IPv6 on the network.
Tehnoloogia
DirectAccess tekitab IPSec tunneli kliendist DirectAccess serverisse ja kasutab IPv6 protokolli, et jõuda DirectAccess serverisse või teiste DirectAccess klientideni. See tehnoloogia kasutab IPv6 traffikut läbi IPv4 võrgu, et jõuda sisevõrku läbi interneti, mis endiselt kasutab IPv4 protokolli.
Nõudmised
DirectAccess vajab:
- Ühe või mitme DirectAccess servereid, mis töötavad Windows Server 2008 R2 peal koos kahte võrguadapteriga, millest 1 ühendust otse internetti ja teine otse sisevõrku.
- DirectAccess serveril kaks järjestiku määratud IPv4 aadressi, need peavad olema määratud adapterile, mis on ühendatud interneti.
- DirectAccess klient, mis jookseb Windows7 peal (ainult Ultimate või Entreprise versioonid)
- Vähemalt 1 domeeni kontroller ja DNS server, mis jookseb Windows Server 2008 SP2 või Windows 2008 R2 peal.
- Public key infrastructure (PKI), mis annab välja arvutile sertifikaati.
Allikad
Välised lingid
- Microsoft's DirectAccess Getting Started page
- Microsoft's DirectAccess TechNet page
- MS-IPHTTPS on MSDN: includes PDF with specification.
- Blogger's posting on DirectAccess