diff --git a/Guests/RTR-01.ps1 b/Guests/RTR-01.ps1 index c9adaff..445a708 100644 --- a/Guests/RTR-01.ps1 +++ b/Guests/RTR-01.ps1 @@ -67,6 +67,16 @@ Start-Service RemoteAccess # End of scritlet + +### Activating remote-access role +echo "installing VPN routing role" +Install-windowsFeature -Name Routing -IncludemanagementTools +Install-remoteAccess -VpnType Routingonly +set-service RemoteAccess -StartupType Automatic +Start-Service RemoteAccess + +#END + ### Activate NAT and DHCP Relay ### echo "Activating NAT and DHCP Relay" @@ -84,22 +94,6 @@ netsh routing ip relay add interface "Arc-SRV" netsh rout ip rel set int WAN min=0 netsh routing ip relay add dhcpserver 192.168.8.1 -### Activating remote-access role -echo "installing VPN routing role" -Install-windowsFeature -Name Routing -IncludemanagementTools -Install-remoteAccess -VpnType Routingonly -set-service RemoteAccess -StartupType Automatic -Start-Service RemoteAccess - -#END - -### Activating DHCP Relay (Useless?) - -#netsh -f ./Arc-CLI.conf -#netsh -f ./Arc-SRV.conf -#netsh -f ./WAN.conf - -# End of scriptlet ### Set connection as private ### echo "Set connection as private" diff --git a/Guests/RTR-03.ps1 b/Guests/RTR-03.ps1 index ece5cc6..5fefb17 100644 --- a/Guests/RTR-03.ps1 +++ b/Guests/RTR-03.ps1 @@ -38,9 +38,9 @@ $IPType = "IPv4" netsh interface ip set address name="WAN" static 192.168.255.254 255.255.255.0 - #Aston +#Aston - netsh interface ip set address name="Aston" DHCP +netsh interface ip set address name="Aston" DHCP ### DNS Conf for all InterfaceAlias @@ -50,12 +50,19 @@ foreach ($c in Get-NetAdapter) { write-host 'Setting DNS for' $c.interfaceName ; ### Install Routing and necessary linked roles -echo "installing VPN routing role" +#echo "installing VPN routing role" + Install-windowsFeature -Name Routing -IncludemanagementTools Install-remoteAccess -VpnType Routingonly set-service RemoteAccess -StartupType Automatic Start-Service RemoteAccess +# Configure NAT + +netsh routing ip nat installing +netsh routing ip nat add interface name="WAN" mode=Private +netsh routing ip nat add interface name="Aston" mode=FULL + ### Change ZoneAlarm rule to accept incoming ICMP ipv4 probes ### Get-NetFirewallRule -name "*ICMP4-ERQ-In*" |Enable-NetFirewallRule