DNS IPs:
50.116.35.76
45.79.166.125

   support@rawtream.com
Network Security & Web Filtering

Deploying Rawstream Network Server in an Active Directory Environment

  1. Download Rawstream Network Server
  2. Download Rawstream AD Sync

Note Rawstream Network Server is not designed to be deployed in a Terminal Services environment. For per-user monitoring and filtering in a Terminal Services environment see Rawstream Web Filtering.

Overview

Rawstream Network Server provides on-premise DNS-based web security. Policies and reporting are by IP. To monitor or filter by Active Directory username, Rawstream AD Sync is needed to map IPs to usernames.

Installing Rawstream Network Server in an AD environment has three parts: 1. Install Rawstream Network Server on its own host or virtual machine 2. Install AD Sync on each domain controller 3. Configure DHCP to hand out the Rawstream Network Server host IPs to client devices

Topology

Devices to be filtered use Rawstream Network Server for DNS resolution which in turn forwards the DNS queries to the Domain Controllers.

This allows DNS resolution of internal resources while letting the RNS to filter by user, based on IP. AD Sync is used to map IPs to users.

Topology

Planning

Generally Rawstream Network Server is installed on its own host / VM. It cannot be installed on a Domain Controller or host providing DNS (UDP/53) services.

For redundancy multiple Rawstream Network Server instances can be deployed on a network. Setup is identical for each instance.

Rawstream AD Sync is installed on each domain controller. AD Sync updates each instance of Rawstream Network Server with the logged in users and the hosts (IPs) they are logged into.

Firewall Rules Rawstream Network Server needs access to *.rawstream.com ports TCP/80 and TCP/443.

Installing Rawstream Network Server on Windows Server

  1. Install the service. The service is installed to C:\Program Files (x86)\Rawstream\Rawstream Network Server Rawstreamn Network Server service
  2. Once install is complete the service will be started automatically, and a browser window will open showing the dashboard. Rawstreamn Network Server dashboard
  3. Set the account token (copied from app.rawstream.com > Dashboard > Settings)
  4. Set the IPs of the domain controllers or DNS servers you want the Rawstream Network Server to forward DNS requests to.

Note Rawstream Network Server dashboard can be accessed at http://localhost:6945/

Note Rawstream Network Server logs to C:\Program Files (x86)\Rawstream\Rawstream Network Server\logs\

Installing Rawstream AD Sync on Windows Server

Install Rawstream AD Sycnc on each domain controller:

  1. Install Rawstream AD Sync
  2. During install you will be asked to enter the Rawstream Network Server hostnames. Enter the hostnames using a semi-colon between each hostname. Ex: rns-host-a;rns-host-b
  3. Start the Rawstream AD Sync service Topology

Note Rawstream AD Sync logs to the Event Viewer Topology

Last updated Jan 22 2020
Start Your Free 15 Day Trial Today    Let's get started
Content by Rawstream 2021
You are connecting from 54.81.61.14