file_goc_767836
DESCRIPTION
file_goc_767836TRANSCRIPT
-
LAB: Server Publishing thng qua ISA-2K6
Trang 1/ 33
LAB: Server Publishing thng qua ISA-2K6 I- M HNH
Hnh v
II- GII THIU M hnh tng t bi Lab 6, pht sinh thm yu cu sau :
- Cng ty cn Publish mt Web Server trong mng ni ra ngoi Internet cc Client d trong mng ni b hay t ngoi Internet u c th truy cp cp
- Thit lp c ch iu khin t xa vi Remote Desktop sao cho Administrator c th khin Web Server t mt my bt k trong mng ni b hoc t ngoi Internet
III- CC BC TRIN KHAI Bi Lab s dng cc thnh phn tng t Lab-6 vi 1 my trong Network = SERVER dng Windows Server 2003 dng lm Web Server (c th dng chung vi my Domain Controller) Cc bc thc hin gm : - Xy dng Web Server, Website (default) vi Internet Information Service (IIS) - Cu hnh cho php truy cp Remote Desktop trn my Web Server - Cu hnh Access Rule v Publishing Rule trn ISA cho Web Server - Cu hnh NAT Inbound trn Router ADSL - To Public Hostname bng giao din Domain Control Panel ca Yahoo
-
LAB: Server Publishing thng qua ISA-2K6
Trang 2/ 33
IV- TRIN KHAI CHI TIT Chun b: t thng s IP cho cc my theo bng sau:
LAN CROSS
My Web Server
Disable
IP Address: 192.168.2.2 Subnet Mask: 255.255.255.0 Default Gateway: 192.168.2.1 Prefered DNS Server: 203.162.4.191
My ISA IP Address: 192.168.1.2 Subnet Mask: 255.255.255.0 Default Gateway: 192.168.1.1 Prefered DNS Server: 203.162.4.191
IP Address: 192.168.2.1 Subnet Mask: 255.255.255.0 Default Gateway: ( trng) Prefered DNS Server: ( trng)
Bc 1: Ci t Internet Information Service (IIS) v thit k Web Site
- M Control Panel Add Remove Programs Add Remove Windows Components Application Server Nhn Detail
- nh du chn Internet Information Services (IIS) Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 3/ 33
- M th mc C:\Inetpub\wwwroot - To mt File Text Document c tn default.htm - Son tho ni dung ty cho File ny
Bc 2: Bt chc nng Remote Desktop trn my Web Server
- Click phi My Computer Properties - nh dn mc chn Enable Remote Desktop in this
computer OK OK
Bc 3: Cu hnh Access Rule v Publishing Rule trn ISA To Access Rule cho php Localhost v Internal truy cp ln nhau:
-
LAB: Server Publishing thng qua ISA-2K6
Trang 4/ 33
- Giao din ISA Management: Click phi Firewall Policy New Access Rule
- t tn Access Rule: Internal-Localhost Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 5/ 33
- Chn Allow Next
- Chn All outbound traffic Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 6/ 33
- Nhn Add - Double Click vo Internal - Double Click vo Localhost - Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 7/ 33
- Nhn Add - Double Click vo Internal - Double Click vo Localhost - Next
- Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 8/ 33
- Finish - Apply OK
-
LAB: Server Publishing thng qua ISA-2K6
Trang 9/ 33
- M Internet Explorer Nhp IP my Web Server 192.168.2.2 Kim tra truy cp thnh cng vo trang Web
-
Start Proprams Accessories Comunication Remote Desktop Connection Nhp 192.168.2.2 Kim tra Remote thnh cng vo my Web Server
To Publishing Rule Publish Web Server:
- Giao din ISA Management: Firewall Policy Toolbox Network Objects Click phi Web Listeners New Web Listener
-
LAB: Server Publishing thng qua ISA-2K6
Trang 10/ 33
- t tn Web Listener l Web80 Next
- Chn Do not require SSL secured connetions with clients Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 11/ 33
- nh du mc chn External Next
- Chn No Authentication Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 12/ 33
- Next
- Finish
-
LAB: Server Publishing thng qua ISA-2K6
Trang 13/ 33
- Click phi Firewall Policy New Web Site Publishing Rule
-
LAB: Server Publishing thng qua ISA-2K6
Trang 14/ 33
- t tn Rule: Publish Web Next
- Chn Allow Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 15/ 33
- Chn Publish a single Web site or load balancer Next
- Chn Use non-secured connections to connect the published Web server
or server farm Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 16/ 33
- Internal site name: nh FQDN ca my Web Server
(pc14.nhatnghe.local) - nh du chn Use a computer name or IP address to connect to the
published server - Computer name or IP address: nh IP Web server (192.168.2.2) - Next
- Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 17/ 33
- Accept request for: chn Any domain name Next
- Web Listener: Chn Web80 Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 18/ 33
- Chn No delegation, and client cannot authenticate directly Next
- Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 19/ 33
- Finish Apply OK
To Publishing Rule Publish RDP:
- Click phi Firewall Policy New Non-Web Server Protocol Publishing Rule
-
LAB: Server Publishing thng qua ISA-2K6
Trang 20/ 33
- t tn Rule: Publish RDP Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 21/ 33
- Nhp IP Web Server (192.168.2.2) Next
- Seleted Protocol: Chn RDP (Terminal Services) Server Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 22/ 33
- nh du chn External Next
-
LAB: Server Publishing thng qua ISA-2K6
Trang 23/ 33
- Finish Apply OK
Bc 4: Cu hnh NAT Inbound trn Router ADSL (Thc hin trn my ISA)
- M Internet Explorer Nhp IP Router l 192.168.1.1 - ng nhp vo giao din cu hnh Router ADSL (Username: admin, password:
admin) OK
-
LAB: Server Publishing thng qua ISA-2K6
Trang 24/ 33
- Chn tab Advanced Nhn nt Lan Clients - IP Address: Nhp IP my ISA l 192.168.1.2 - Host Name: Nhp tn ty - Nhn nt Add
-
LAB: Server Publishing thng qua ISA-2K6
Trang 25/ 33
- Nhn nt Virtual Server - Chn Servers Web Server Add
-
LAB: Server Publishing thng qua ISA-2K6
Trang 26/ 33
- Chn Apps Win2k Terminal Add - Nhn nt Apply
-
LAB: Server Publishing thng qua ISA-2K6
Trang 27/ 33
- Ghi nhn IP Public mt ngoi Router (vd: 222.254.188.60)
Kim tra truy cp bng IP Address trn my Client:
- M Internet Explorer Nhp IP Public
(222.254.188.60) Kim tra truy cp thnh cng vo trang Web
- M Remote Desktop Connection Nhp IP Public
(222.254.188.60) Kim tra Remote thnh cng vo
m y Web Server
-
LAB: Server Publishing thng qua ISA-2K6
Trang 28/ 33
Bc 5: To Public Hostname bng giao din Domain Control Panel ca Yahoo (Thc hin trn my ty )
-
LAB: Server Publishing thng qua ISA-2K6
Trang 29/ 33
- M Internet Explorer truy cp trang
websmallbusiness.yahoo.com/services - ng nhp bng username v password ng k
- Chn Domain Control Panel
-
LAB: Server Publishing thng qua ISA-2K6
Trang 30/ 33
- Chn Manage Advanes DNS Settings
-
LAB: Server Publishing thng qua ISA-2K6
Trang 31/ 33
- Nhn nt Edit
- Nhp IP Public mt ngoi Router ADSL (222.254.188.60) - Nhn nt Submit
- Kt qu: thay i IP cho Publish
Hostname www.nhatnghe.info
-
LAB: Server Publishing thng qua ISA-2K6
Trang 32/ 33
- Kim tra: Chuyn ra Command Line - NSLOOKUP -
Nhp www.nhatnghe.info Kim tra Public Hostname cha c cp nht IP - Ch khong 15 30 pht IP mi c cp nht
-
LAB: Server Publishing thng qua ISA-2K6
Trang 33/ 33
- Kim tra li kt qu
Kim tra truy cp bng Public Hostname trn my Client:
- M Internet Explorer Nhp Public Hostname
(www.nhatnghe.info) Kim tra truy cp thnh cng vo trang Web
- M Remote Desktop Connection Nhp Public Hostname
(www.nhatnghe.info) Kim tra Remote thnh cng vo
m y Web Server