Microsoft KB Archive/324264

= HOW TO: Configure a NAT Server in Windows Server 2003 =

PSS ID Number: 324264

Article Last Modified on 4/5/2004

-

The information in this article applies to:


 * Microsoft Windows Server 2003, Datacenter Edition
 * Microsoft Windows Server 2003, Enterprise Edition
 * Microsoft Windows Server 2003, Standard Edition
 * Microsoft Windows Server 2003, Web Edition
 * Microsoft Windows Server 2003, 64-Bit Datacenter Edition
 * Microsoft Windows Server 2003, 64-Bit Enterprise Edition
 * Microsoft Windows Small Business Server 2003, Standard Edition
 * Microsoft Windows Small Business Server 2003, Premium Edition

-



This article was previously published under Q324264



For a Microsoft Windows 2000 version of this article, see 310357.

IN THIS TASK

 * SUMMARY
 * ** How to Configure a Routing and Remote Access NAT Server
 * How to Configure a Routing and Remote Access NAT Server to Assign IP Addresses and Perform Proxy DNS Queries
 * How to Configure a Windows Server 2003-Based Computer to Use a NAT Server



SUMMARY
This article describes how to configure a network address translation (NAT) server by using Windows Server 2003. The Windows Server 2003 Routing and Remote Access service includes the NAT routing protocol. If the NAT routing protocol is installed and configured on a server that runs Routing and Remote Access, internal network clients with private Internet Protocol (IP) addresses can access the Internet through the external interface of the NAT server.

back to the top

How to Configure a Routing and Remote Access NAT Server
When internal network clients send a request for the Internet, the NAT protocol driver intercepts the request and forwards the request to the destination Internet server. All requests appear to come from the external IP address of the NAT server. This process hides your internal IP addresses scheme.

To configure a Routing and Remote Access NAT Server:
 * 1) On the Administrative Tools menu, click Routing and Remote Access.
 * 2) In the Routing and Remote Access MMC, expand your   (where   is the name of the server that you want to configure), and then expand IP Routing in the left pane.
 * 3) Right-click General, and then click New Routing Protocol.
 * 4) Click to select the NAT/Basic Firewall check box, and then click OK.
 * 5) Right-click NAT/Basic Firewall in the left pane, and then click New Interface.
 * 6) Click the interface that represents your internal network interface, and then click OK.
 * 7) In the Network Address Translation properties, click Private interface connected to private network, and then click OK.
 * 8) Right-click NAT/Basic Firewall in the left pane, and then click New Interface.
 * 9) Click the interface that represents your external network interface, and then click OK.
 * 10) In Network Address Translation properties, click Public interface connected to the Internet.
 * 11) Click to select the Enable NAT on this interface check box, and then click OK.

The NAT server can automatically assign IP addresses to internal network clients. You may want to use this functionality if you do not have a DHCP server that is already assigning addressing information to clients on the internal network.

back to the top

How to Configure a Routing and Remote Access NAT Server to Assign IP Addresses and Perform Proxy DNS Queries
The NAT server can also perform Domain Name System (DNS) queries on the behalf of NAT clients. The Routing and Remote Access NAT server resolves the Internet host name that is included in the client request and then forwards the IP address to the client.

To configure the Routing and Remote Access NAT server to assign IP addresses and perform proxy DNS queries on the behalf of internal network clients, follow these steps:
 * 1) Right-click NAT/Basic Firewall in the left pane, and then click Properties.
 * 2) Click the Address Assignment tab, and then click to select the Automatically assign IP addresses by using the DHCP allocator check box.
 * 3) In the IP address box, type a network ID.
 * 4) In the Mask box, type a subnet mask.
 * 5) Click the Name Resolution tab, and then click to select the Clients using Domain Name System (DNS) check box.
 * 6) If you use a demand-dial interface to connect to the Internet, click to select the Connect to the public network when a name needs to be resolved check box.
 * 7) In the Demand-dial interface box, click the interface to dial.
 * 8) Click Apply, and then click OK.

NOTE: After you follow these basic configuration steps, internal network clients can access servers on the Internet.

back to the top

How to Configure a Windows Server 2003-Based Computer to Use a NAT Server

 * 1) Click Start, point to Control Panel, point to Network Connections, and then click Local Area Connection.
 * 2) Click Properties.
 * 3) Click Internet Protocol (TCP/IP).
 * 4) Click Properties.
 * 5) In the Default gateway box, type the internal IP address of the NAT server.

NOTE: If your computer receives its IP address from a Dynamic Host Configuration Protocol (DHCP) server, click Advanced, click the IP Settings tab, click Add under Gateway, type the internal IP address of your NAT server, click Add, click OK, and then proceed to step 6.
 * 1) Click OK, click OK, and then click Close.

back to the top

Additional query words: kbnetwork

Keywords: kbHOWTOmaster kbnetwork KB324264

Technology: kbSBServ2003Pre kbSBServ2003Search kbSBServ2003St kbSBServSearch kbWinServ2003Data kbWinServ2003Data64bit kbWinServ2003Data64bitSearch kbWinServ2003DataSearch kbWinServ2003Ent kbWinServ2003Ent64bit kbWinServ2003Ent64bitSearch kbWinServ2003EntSearch kbWinServ2003Search kbWinServ2003St kbWinServ2003Web

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© 2004 Microsoft Corporation. All rights reserved.