Configurar 2 links de internet no Windows Server 2022

Question

Bom dia!
Atualmente tenho o seguinte cenário em minha empresa.

Windows Server 2022 com 3 placas de rede. 1 placa de rede para a rede local de domínio e a outra placa de rede é uma placa de rede dual port, ou seja uma única placa de rede fisica, mas com duas portas. Sendo assim o Windows Server identifica que tenho 3 placas de rede no meu servidor.
Ele atualmente está com as funções de AD e DNS instaladas, configuradas e funcionando corretamente.

Recentemente coloque um link de internet na segunda placa de rede para o servidor poder ter acesso a internet e compartilhar a internet para os clientes que se autenticam no domínio.

Já vi vários vídeos, vários artigos, mas cada um me da uma informação diferente. E no final das contas não consigo fazer com que os clientes saim para a internet.

Alguém pode me dar uma ajuda?

Muito obrigado a todos e tenham um excelente dia!

Att,

Alexander

Answer 1

Well, Hi there, based on your provided information. I have scoped down and have some solution to recommend for you to try, let me know the result ok ?

- You will need to configure NICs with correct IPs

• NIC1 (LAN): Static IP: 192.168.1.1/24 Gateway: Leave blank (do not set a gateway here) DNS: 127.0.0.1 (the server itself, running DNS)
• NIC2 (Internet): Dynamic or static IP from ISP Gateway: Your ISP’s gateway (e.g., 192.0.2.1) DNS: Can use public DNS like 1.1.1.1, 8.8.8.8, or your ISP's DNS

*****Only NIC2 should have a default gateway set, or else Windows gets confused which route to use.

- Then enable IP Routing on the Server to turn your server into a basic router:

• Press Win + R, type regedit
• Navigate to : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
• Find or create a DWORD (32-bit) value called IPEnableRouter
• Set its value to 1
• Reboot the server

- Then enable Internet Connection Sharing (ICS) or NAT via Routing and Remote Access (RRAS)

But you will have two options do it as your wishes:

• Option A: Internet Connection Sharing is simple and easier
  • Go to Control Panel → Network Connections
  • Right-click the Internet NIC (NIC2) → Properties
  • Go to Sharing tab
  • Check "Allow other network users to connect through this computer’s Internet connection"
  • Select the domain LAN NIC (NIC1) as the one clients use

*ICS is simple, but not very flexible. It may change the NIC1 IP to 192.168.137.1, which can break AD. So this is only good for test labs.

• Option B: Use RRAS to enable NAT this is recommended for domain networks
  • Open Server Manager → Add Roles and Features
  • Add the Remote Access role
  • Under role services, check Routing
  • Complete the wizard and install
  • After install:
    • Open Routing and Remote Access (RRAS) console (rrasmgmt.msc)
    • Right-click the server → Configure and Enable Routing and Remote Access
    • Choose Custom Configuration
    • Select NAT and LAN Routing
    • After setup, right-click the server → Start
  • In the RRAS tree:
    • Go to IPv4 → NAT
    • Right-click NAT → New Interface
    • Choose NIC2 (Internet) → Check "Public interface connected to the internet" and "Enable NAT on this interface"
    • Add another interface: NIC1 (LAN) → Check "Private interface connected to private network"

Done! Now your domain clients should get internet access if they:

- Ensure DHCP or Static IPs Are Correct on Clients

Client IPs should be:

• IP: 192.168.1.x
• Subnet: 255.255.255.0
• Gateway: 192.168.1.1 (your server's NIC1 IP)
• DNS: 192.168.1.1 (your server, running DNS)

-> Your server will forward DNS to the internet from itself.