Install and Enable NAT on a Remote Access Server

  • Article

Updated: April 30, 2010

Applies To: Windows Server 2008, Windows Server 2008 R2

The server on which you plan to install and enable NAT should already be configured as a VPN remote access server or a dial-up remote access server. For more information, see Checklist: Implementing a VPN Remote Access Server Design or Checklist: Implementing a Dial-up Remote Access Server Design.

Membership in the local Administrators group, or equivalent, is the minimum required to complete this procedure.

To install NAT

  1. In the RRAS MMC snap-in, expand IPv4, right-click General, and then click New Routing Protocol.

  2. In the New Routing Protocol dialog box, select NAT, and then click OK.

To enable NAT on a remote access server

  1. In the RRAS MMC snap-in, right-click NAT, and then click Properties.

  2. If you do not have a DHCP server on the private network, then you can use the RRAS server to respond to DHCP address requests. To do this, on the Address Assignment tab, select the Automatically assign IP addresses by using the DHCP allocator check box.

  3. To allocate addresses to clients on the private network by acting as a DHCP server, in IP address and Mask, configure a subnet address from which the addresses are assigned. For example, if you enter 192.168.0.0 and a subnet mask of 255.255.255.0, then the RRAS server responds to DHCP requests with address assignments from 192.168.0.1 through 192.168.0.254.

  4. (Optional) To exclude addresses in the configured network range from being assigned to DHCP clients on the private network, click Exclude, click Add, and then configure the addresses.

  5. To add the public interface to the NAT configuration, right-click NAT, and then click New Interface. Select the interface connected to the public network, and then click OK.

  6. On the NAT tab, click Public interface connected to the Internet and Enable NAT on this interface, and then click OK.

  7. If you want to add additional public addresses assigned to this interface or configure service and port mappings to computers on the private network, see IPv4 - NAT - Interface - Properties Page.

  8. To add the private interface to the NAT configuration, right-click NAT, and then click New Interface. Select the interface connected to the private network, and then click OK.

  9. On the NAT tab, click Private interface connected to private network, and then click OK.