Configuring a Dial-up Remote Access Server

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

To provide dial-up access to your organization’s intranet, configure a computer running Windows Server 2003 as a dial-up remote access server.

Before configuring the server as a dial-up remote access server, you must enable the Routing and Remote Access service, which is installed automatically with Windows Server 2003. Use the Routing and Remote Access Server Setup Wizard. For instructions on using the wizard, see "Remote access/VPN server role: Configuring a remote access/VPN server " in Help and Support Center for Windows Server 2003.

Note

• You can optionally implement Network Access Quarantine Control to quarantine each new remote access connection until the configuration of the client computer can be verified against network policy restrictions. For more information, see "Planning for Network Access Quarantine Control" and "Configuring Network Access Quarantine Control" earlier in this chapter.

With Routing and Remote Access enabled, configure the properties of a dial-up remote access server by using the Routing and Remote Access snap-in.

To configure a server for dial-up remote access

1. Open the Routing and Remote Access snap-in.

2. In the console tree, right-click the server name, and then click Properties.

3. On the General tab of the Server Properties dialog box, verify that the Remote access server check box is selected.

4. On the Security tab, set up authentication for dial-up remote access clients:

   1. Click Authentication Methods, and in the dialog box select the authentication methods that the server will accept for dial-up connections.

      Note

The server is configured by default to accept certain authentication methods. You can use remote access policies to control which authentication methods to accept. For more information about using Windows Server 2003 remote access policies, see "Introduction to remote access policies" in Help and Support Center for Windows Server 2003.

1. Under Authentication Provider on the Security tab, select the authentication provider to use for dial-up networking clients.

2. Under Accounting Provider, select and configure the accounting provider to use for recording dial-up connection accounting information.

1. On the IP tab, set up routing for remote access clients:

   1. Verify that the Enable IP routing and Allow IP-based remote access and demand-dial connections check boxes are selected.

   2. If you are using DHCP to obtain IP addresses for remote access clients, select Dynamic Host Configuration Protocol (DHCP).

      -Or-

      Select Static address pool, and then configure ranges of IP addresses that are dynamically assigned to dial-up networking clients.

      If the static IP address pool consists of ranges of IP addresses for a separate subnet, either enable an IP routing protocol on the remote access server or add static IP routes for each range to your IP routing infrastructure. If the routes are not added, remote access clients cannot receive traffic from resources on the intranet.