Share via


Configure a Dial-up Remote Access Server

Updated: April 30, 2010

Applies To: Windows Server 2008, Windows Server 2008 R2

To provide dial-up access to your organization’s intranet, configure a computer running Windows Server® 2008 R2 or Windows Server® 2008 as a dial-up remote access server.

To enable RRAS and add the server roles

  1. Add Network Policy and Access Services as a server role, and then enable the Routing and Remote Access service (RRAS).

    1. Click Start, click Administrative Tools, and then click Server Manager.

    2. In the Server Manager navigation tree, click Roles, and then under Roles Summary, click Add Roles.

      The Add Roles Wizard appears.

    3. On the Before You Begin page, click Next.

    4. On the Select Server Roles page, select Network Policy and Access Services, and then click Next.

    5. On the Network Policy and Access Services page, click Next.

    6. On the Select Role Services page, select Routing and Remote Access Services, and then click Next. This automatically selects all of the role services for Routing and Remote Access Services.

    7. On the Confirm Installation Selections page, click Install.

    8. On the Installation Results page, click Close.

  2. After RRAS is installed, run the Routing and Remote Access Server Setup Wizard by right-clicking the VPN server in the Routing and Remote Access snap-in, and then clicking Configure and Enable Routing and Remote Access.

  3. Select Remote access (dial-up or VPN) on the Configuration page, and Dial-up on the Remote Access page.

With RRAS enabled, configure the properties of a dial-up remote access server by using the Routing and Remote Access snap-in.

To configure a server for dial-up remote access

  1. Open the Routing and Remote Access snap-in.

  2. In the console tree, right-click the server name, and then click Properties.

  3. On the General tab of the Server Properties dialog box, verify that the IPv4 Remote access server or IPv6 Remote access server check box is selected.

  4. On the Security tab, set up authentication for dial-up remote access clients:

    1. Click Authentication Methods, and then in the dialog box select the authentication methods that you want the server to accept for dial-up connections.

    2. Under Authentication provider on the Security tab, select the authentication provider you want to use for dial-up networking clients.

    3. Under Accounting provider, select and configure the accounting provider you want to use for recording dial-up connection accounting information.

  5. On the IPv4 tab, set up routing for remote access clients:

    1. Verify that the Enable IPv4 Forwarding check box is selected.

    2. If you are using DHCP to obtain IP addresses for remote access clients, select Dynamic Host Configuration Protocol (DHCP).

      -Or-

      Select Static address pool, and then configure ranges of IP addresses that are dynamically assigned to dial-up networking clients.

      If the static IP address pool consists of ranges of IP addresses for a separate subnet, either enable an IP routing protocol on the remote access server or add static IP routes for each range to your IP routing infrastructure. If the routes are not added, remote access clients cannot receive traffic from resources on the intranet.

  6. On the IPv6 tab, verify that the Enable IPv6 Forwarding check box is selected.