DirectAccess serveri paigaldamine ja haldamine Windows Server operatsioonisüsteemis

From ICO wiki
Jump to navigationJump to search

Artur Kulikov


DirectAccess is a new feature in Windows 7 (Ultimate and Enterprise editions only) and Windows Server 2008 R2 that provides seamless intranet connectivity to DirectAccess client computers when they are connected to the Internet. Unlike most traditional VPN connections, which must be initiated and terminated by explicit user action, DirectAccess connections is designed to connect automatically as soon as the computer connects to the internet. In 2010, Microsoft Forefront Unified Access Gateway was released, which simplifies[1][2][3] the deployment of DirectAccess, and includes additional components that make it easier to integrate without the need to deploy IPv6 on the network.

Tehnoloogia

DirectAccess tekitab IPSec tunneli kliendist DirectAccess serverisse ja kasutab IPv6 protokolli, et jõuda DirectAccess serverisse või teiste DirectAccess klientideni. See tehnoloogia kasutab IPv6 traffikut läbi IPv4 võrgu, et jõuda sisevõrku läbi interneti, mis endiselt kasutab IPv4 protokolli.

Requirements

DirectAccess requires:

  • one or more DirectAccess servers running Windows Server 2008 R2 with two network adapters: one that is connected directly to the Internet, and a second that is connected to the intranet.
  • on the DirectAccess server, at least two consecutive, public IPv4 addresses assigned to the network adapter that is connected to the Internet.
  • DirectAccess clients running Windows 7 (Ultimate and Enterprise editions only).
  • at least one domain controller and Domain Name System (DNS) server running Windows Server 2008 SP2 or Windows Server 2008 R2.
  • public key infrastructure (PKI) to issue computer certificates.

Smart card certificates, and health certificates for Network Access Protection may be used along with PKI.

A third-party NAT64 device may be used to provide access to IPv4-only resources to DirectAccess clients.[4]

Allikad

Välised lingid

  1. Microsoft Forefront Unified Access Gateway 2010
  2. Windows Server Division WebLog
  3. Portcullis Systems UAG DirectAccess Appliance
  4. DirectAccess Requirements
Retrieved from "https://wiki.itcollege.ee/index.php?title=DirectAccess_serveri_paigaldamine_ja_haldamine_Windows_Server_operatsioonisüsteemis&oldid=24362"