Microsoft DirectAccess Best Practices and Troubleshooting
图书信息
| 作者 | Jordan Krause |
| 出版社 | Packt Publishing |
| ISBN | 9781782171072 |
| 出版时间 | 2013-10-14 |
| 字数 | 45.3万 |
| 分类 | 进口书,外文原版书,电脑,网络 |
读书简介
This book covers best practices and acts as a complete guide to DirectAccess and automatic remote access.Microsoft DirectAccess Best Practices and Troubleshooting is an ideal guide for any existing or future DirectAccess administrator and system administrators who are working on Windows Server 2012. This book will also be beneficial for someone with a basic knowledge of networking and deployment of Microsoft operating systems and software who wants to learn the intricacies of DirectAccess and its interfaces.
目录
Microsoft DirectAccess Best Practices and Troubleshooting
Table of Contents
Microsoft DirectAccess Best Practices and Troubleshooting
Credits
Foreword
About the Author
About the Reviewers
www.PacktPub.com
Support files, eBooks, discount offers and more
Why Subscribe?
Free Access for Packt account holders
Instant Updates on New Packt Books
Preface
DirectAccess rocks
So many options
Take it from me
Which flavor of DirectAccess are you talking about?
Let's get rolling
What this book covers
What you need for this book
Who this book is for
Conventions
Reader feedback
Customer support
Errata
Piracy
Questions
1. DirectAccess Server Best Practices
Preparing your Remote Access servers for DirectAccess
NIC configuration
Configuring internal NIC
Configuring external NIC
NIC binding
MAC address spoofing for virtual machines
Adding static routes
Hostname and domain membership
Prestage the computer account
Time for certificates
Installing the IP-HTTPS SSL certificate
Installing the IPsec machine certificate
Adding the roles
Don't use the Getting Started Wizard!
Running the full Remote Access Setup Wizard
Reasons not to use the Getting Started Wizard
Self-signed certificates
Self-hosted NLS
Disables Teredo
Applies client policy to the domain computers group
No advanced choices
Security hardening the server
Summary
2. DirectAccess Environmental Best Practices
To NAT or not to NAT?
Three is better than one
Efficiency of Teredo over IP-HTTPS
6to4
Teredo
IP-HTTPS
Planning for Certificates (PKI)
SSL certificate for NLS
SSL certificate for IP-HTTPS
Machine certificates for IPsec
Requirements for the machine certificate
Choosing the CA in the wizards
Marking your calendars for certificate expirations
Defining your GPOs and security groups
Let the wizards take care of it
Creating your own GPOs
Setting up the Network Location Server (NLS)
Do I need IPv6 or ISATAP?
Teredo and 6to4 tips and tricks
Set Teredo to EnterpriseClient
Using Group Policy for this change
Disabling the 6to4 adapter on your clients
Using Group Policy for this change
Summary
3. Configuring Manage Out to DirectAccess Clients
Pulls versus pushes
What does Manage Out have to do with IPv6?
Creating a selective ISATAP environment
Creating a security group and DNS record
Creating the GPO
Configuring the GPO
Adding machines to the group
Setting up client-side firewall rules
RDP to a DirectAccess client
No ISATAP with multisite DirectAccess
Summary
4. General DirectAccess Troubleshooting
Remote Access Management Console
Windows Firewall with Advanced Security
Reading the client logfiles
What happened to Teredo?
Clients with native IPv6
Summary
5. Unique DirectAccess Troubleshooting Scenarios
What happens when NLS is offline?
The resolution
I enabled NLB and DA broke!
The resolution
IPv4 applications don't connect over DA
App46 by IVO Networks
Cannot contact some servers
Routing
Name resolution
Checking DNS for strange AAAA records
Does it work over IP-HTTPS and not Teredo?
Summary
Index
- Desperate Sons(Standiford, Les)
- Castle Rackrent(Maria Edgeworth)
- 未解之谜(下)(百读)
- 侯大利刑侦笔记8:旧案寻踪(集侦查学、痕迹学、社会学、尸体解剖学、犯罪心理学的教科书式破案小说)(读客知识小说文库)(小桥老树)
- 文治帝国:大宋300年的世运与人物【畅销书《一看就停不下来的中国史》作者重磅新书!】(艾公子)
- 葛冰动物童话·飞熊“佐罗”(葛冰)
- 全国名校二外英语考研真题详解(圣才电子书)
- 数据资本论([美]阿莱克斯·彭特兰[美]亚历山大·利普顿 [美]托马斯·哈德乔诺)
