Windows Server 2025: DHCP, DNS, and NAT Configuration

Overview

If you're building a self-contained Windows Server environment with one domain controller that handles Active Directory (AD), DHCP, DNS, NAT, and Group Policy, this guide walks you through every step. Whether you're setting up a test domain or a lightweight production backbone, this configuration gives you centralized identity, network services, and policy control — all from a single box.

What This Guide Covers

Installing and configuring Active Directory Domain Services (AD DS)
Setting up DNS for internal name resolution and forwarding
Deploying DHCP to assign IPs and network settings to clients
Enabling NAT to route internet access to internal devices
Verifying connectivity and client integration

Prerequisites

A hypervisor (e.g., Proxmox, Hyper-V, VMware)
Windows Server 2025 installed with two NICs:

NIC 1: Internet-facing
NIC 2: Internal LAN

Static IPs assigned to both NICs
Basic understanding of Windows Server roles and networking

Let's Get Started!

Create a Linux Bridge

Network Configuration

Assign a second network adapter to the server using the Linux bridge. This adapter will serve the internal LAN segment.

DHCP Server Setup

Install and configure the DHCP role to automatically assign IP addresses and network settings to connected clients.

Configure IP and DNS

Set a static IP and DNS server address on the newly added network adapter to establish internal routing and name resolution.

Install Roles and Features

Click Add roles and features in Server Manager.

Add Roles and Features

Click Next.

Wizard Introduction

Select Role-based or feature-based installation.

Installation Type

Select your server, then click Next.

Server Selection

Select the following roles:

DHCP Server
DNS Server
Remote Access

Role Selection

Click Next through the feature and confirmation screens.

Features

Confirmation

Remote Access Role Services

Select Routing, then click Next.

Routing Selection

Confirmation

Click Install.

Installation Progress

Click Close when installation completes.

Installation Complete

DHCP Setup

Launch the DHCP post-install wizard.

DHCP Wizard Start

Click Next, then Commit.

DHCP Commit

DHCP Complete

Open the DHCP console.

DHCP Console

Confirm the binding is set to NIC #2.

Right-click IPv4 and select New Scope.

New Scope

Scope Wizard Start

Name the scope and define the IP range and subnet mask.

Scope Name

IP Range

Click Next through the remaining steps.

Exclusions

Lease Duration

Configure Options

Add the router IP (e.g., 10.0.0.1) and DNS server.

Router Configuration

DNS Configuration

Click Next and Finish to complete the scope setup.

Scope Summary

Activate Scope

Finish Scope Wizard

DHCP Setup Complete

Routing and Remote Access Setup

Open Routing and Remote Access.

RRAS Console

Right-click the server and select Configure and Enable Routing and Remote Access.

RRAS Wizard Start

RRAS Wizard Next

Select NAT and choose the correct NIC.

NAT Selection

NIC Selection

Finish RRAS Setup

RRAS Summary

Firewall Configuration

If you encounter a firewall error, apply the necessary rule changes.

Firewall Error

Firewall Rule 1

Firewall Rule 2

Firewall Rule 3

Firewall Rule 4

Firewall Rule 5

Validation

On your desktop client, confirm DHCP IP assignment, DNS resolution, and internet access.

Client Confirmation