file_goc_767836

LAB: Server Publishing thng qua ISA-2K6

Trang 1/ 33

LAB: Server Publishing thng qua ISA-2K6 I- M HNH

Hnh v

II- GII THIU M hnh tng t bi Lab 6, pht sinh thm yu cu sau :

- Cng ty cn Publish mt Web Server trong mng ni ra ngoi Internet cc Client d trong mng ni b hay t ngoi Internet u c th truy cp cp

- Thit lp c ch iu khin t xa vi Remote Desktop sao cho Administrator c th khin Web Server t mt my bt k trong mng ni b hoc t ngoi Internet

III- CC BC TRIN KHAI Bi Lab s dng cc thnh phn tng t Lab-6 vi 1 my trong Network = SERVER dng Windows Server 2003 dng lm Web Server (c th dng chung vi my Domain Controller) Cc bc thc hin gm : - Xy dng Web Server, Website (default) vi Internet Information Service (IIS) - Cu hnh cho php truy cp Remote Desktop trn my Web Server - Cu hnh Access Rule v Publishing Rule trn ISA cho Web Server - Cu hnh NAT Inbound trn Router ADSL - To Public Hostname bng giao din Domain Control Panel ca Yahoo


Trang 2/ 33

IV- TRIN KHAI CHI TIT Chun b: t thng s IP cho cc my theo bng sau:

LAN CROSS

My Web Server

Disable

IP Address: 192.168.2.2 Subnet Mask: 255.255.255.0 Default Gateway: 192.168.2.1 Prefered DNS Server: 203.162.4.191

My ISA IP Address: 192.168.1.2 Subnet Mask: 255.255.255.0 Default Gateway: 192.168.1.1 Prefered DNS Server: 203.162.4.191

IP Address: 192.168.2.1 Subnet Mask: 255.255.255.0 Default Gateway: ( trng) Prefered DNS Server: ( trng)

Bc 1: Ci t Internet Information Service (IIS) v thit k Web Site

- M Control Panel Add Remove Programs Add Remove Windows Components Application Server Nhn Detail

- nh du chn Internet Information Services (IIS) Next


Trang 3/ 33

- M th mc C:\Inetpub\wwwroot - To mt File Text Document c tn default.htm - Son tho ni dung ty cho File ny

Bc 2: Bt chc nng Remote Desktop trn my Web Server

- Click phi My Computer Properties - nh dn mc chn Enable Remote Desktop in this

computer OK OK

Bc 3: Cu hnh Access Rule v Publishing Rule trn ISA To Access Rule cho php Localhost v Internal truy cp ln nhau:


Trang 4/ 33

- Giao din ISA Management: Click phi Firewall Policy New Access Rule

- t tn Access Rule: Internal-Localhost Next


Trang 5/ 33

- Chn Allow Next

- Chn All outbound traffic Next


Trang 6/ 33

- Nhn Add - Double Click vo Internal - Double Click vo Localhost - Next


Trang 7/ 33

- Nhn Add - Double Click vo Internal - Double Click vo Localhost - Next

- Next


Trang 8/ 33

- Finish - Apply OK


Trang 9/ 33

- M Internet Explorer Nhp IP my Web Server 192.168.2.2 Kim tra truy cp thnh cng vo trang Web

-

Start Proprams Accessories Comunication Remote Desktop Connection Nhp 192.168.2.2 Kim tra Remote thnh cng vo my Web Server

To Publishing Rule Publish Web Server:

- Giao din ISA Management: Firewall Policy Toolbox Network Objects Click phi Web Listeners New Web Listener


Trang 10/ 33

- t tn Web Listener l Web80 Next

- Chn Do not require SSL secured connetions with clients Next


Trang 11/ 33

- nh du mc chn External Next

- Chn No Authentication Next


Trang 12/ 33

- Next

- Finish


Trang 13/ 33

- Click phi Firewall Policy New Web Site Publishing Rule


Trang 14/ 33

- t tn Rule: Publish Web Next

- Chn Allow Next


Trang 15/ 33

- Chn Publish a single Web site or load balancer Next

- Chn Use non-secured connections to connect the published Web server

or server farm Next


Trang 16/ 33

- Internal site name: nh FQDN ca my Web Server

(pc14.nhatnghe.local) - nh du chn Use a computer name or IP address to connect to the

published server - Computer name or IP address: nh IP Web server (192.168.2.2) - Next

- Next


Trang 17/ 33

- Accept request for: chn Any domain name Next

- Web Listener: Chn Web80 Next


Trang 18/ 33

- Chn No delegation, and client cannot authenticate directly Next

- Next


Trang 19/ 33

- Finish Apply OK

To Publishing Rule Publish RDP:

- Click phi Firewall Policy New Non-Web Server Protocol Publishing Rule


Trang 20/ 33

- t tn Rule: Publish RDP Next


Trang 21/ 33

- Nhp IP Web Server (192.168.2.2) Next

- Seleted Protocol: Chn RDP (Terminal Services) Server Next


Trang 22/ 33

- nh du chn External Next


Trang 23/ 33

- Finish Apply OK

Bc 4: Cu hnh NAT Inbound trn Router ADSL (Thc hin trn my ISA)

- M Internet Explorer Nhp IP Router l 192.168.1.1 - ng nhp vo giao din cu hnh Router ADSL (Username: admin, password:

admin) OK


Trang 24/ 33

- Chn tab Advanced Nhn nt Lan Clients - IP Address: Nhp IP my ISA l 192.168.1.2 - Host Name: Nhp tn ty - Nhn nt Add


Trang 25/ 33

- Nhn nt Virtual Server - Chn Servers Web Server Add


Trang 26/ 33

- Chn Apps Win2k Terminal Add - Nhn nt Apply


Trang 27/ 33

- Ghi nhn IP Public mt ngoi Router (vd: 222.254.188.60)

Kim tra truy cp bng IP Address trn my Client:

- M Internet Explorer Nhp IP Public

(222.254.188.60) Kim tra truy cp thnh cng vo trang Web

- M Remote Desktop Connection Nhp IP Public

(222.254.188.60) Kim tra Remote thnh cng vo

m y Web Server


Trang 28/ 33

Bc 5: To Public Hostname bng giao din Domain Control Panel ca Yahoo (Thc hin trn my ty )


Trang 29/ 33

- M Internet Explorer truy cp trang

websmallbusiness.yahoo.com/services - ng nhp bng username v password ng k

- Chn Domain Control Panel


Trang 30/ 33

- Chn Manage Advanes DNS Settings


Trang 31/ 33

- Nhn nt Edit

- Nhp IP Public mt ngoi Router ADSL (222.254.188.60) - Nhn nt Submit

- Kt qu: thay i IP cho Publish

Hostname www.nhatnghe.info


Trang 32/ 33

- Kim tra: Chuyn ra Command Line - NSLOOKUP -

Nhp www.nhatnghe.info Kim tra Public Hostname cha c cp nht IP - Ch khong 15 30 pht IP mi c cp nht


Trang 33/ 33

- Kim tra li kt qu

Kim tra truy cp bng Public Hostname trn my Client:

- M Internet Explorer Nhp Public Hostname

(www.nhatnghe.info) Kim tra truy cp thnh cng vo trang Web

- M Remote Desktop Connection Nhp Public Hostname

(www.nhatnghe.info) Kim tra Remote thnh cng vo

m y Web Server

file_goc_767836

Documents