Re: Single 2003 Server with DHCP, DNS and ISA 2006
- From: Andy <Andy@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Sat, 21 Apr 2007 08:58:00 -0700
Hi Herb,
Thanks for the quick response. I'll answer what I can as best as I can
under your questions/comments.
"Herb Martin" wrote:
That is what I told the ICT Coordinator. He told me to contact our Schools
"Andy" <Andy@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:8996BFB3-8B60-4C05-A00E-1268C222DFAB@xxxxxxxxxxxxxxxx
I work for a Primary School and we recently took delivery of a new server
which I have just finished setting up. The Server has been configured
with
the Active Directory, DHCP and DNS roles. The server is also running ISA
Server 2006.
A DC should practically NEVER be a router/firewall to the Internet.
County ICT department and said that for a primary school a single server is
all that was needed. The ICT Coordinator was happy with that as it was
cheaper. Not ideal but I am limited to budget restraints.
A DNS server for YOUR users should almost certainly NOT be a publicOur DNS Server is just for the internal clients. I am not sure I fully
DNS server (if that is what you mean.)
understand you.
ISA should run on a non-DC. The DC should be "behind" the ISA orAgain due to what I mentioned in my reply above, that is what our school
other firearms and should NOT be doing recursion throughout the Internet
to resolve DNS there.
went for due to being told it would be OK, even though I would have prefered
2 servers.
Sorry I meant Subnet Mask. It used to be 255.255.255.0 on the old ServerIt has 2 NIC's as follows:
DCs are difficult to manage with multiple NICs. (It is possible but most
experts will just tell you not to try it.)
Internal with IP 10.200.10.10, Subnet 255.0.0.0
That is NOT a "Subnet" but a "Subnet Mask" and it looks (on casual
inspection) like it is WRONG. It should likely be 255.255.255.0 or
some other value since it makes the entire 10-net the local (sub)net.
but when I set the new one, it defaulted to 255.0.0.0 I have tried changing
it to 255.255.255.0 on both the internal and external NIC but it didn't make
any difference. Unless I have to change somewhere else other than in the NIC
properties?
So are you saying my internal NIC would be 255.255.255.0 and my external NICExternal with IP 10.210.10.10, Subnet 255.0.0.0 and 10.210.10.1 gateway
with
TCP/IP.
This confirms the Subnet Mask mistake since you have both NICs on
the same (sub)Net, the fully 10 net.
on another? I thought they had to be on the same?
Will answer this later as I am at home, will be going back to school later.The problem is no workstations can get an IP address through DHCP.
Not too surprising with the above subnet problems. What does the DHCP
scope look like?
As far as I remember, something like:
Scope 0 [10.200.10.x]
Address Pool 10.200.10.1-10.200.10.255 with 10.200.10.10 excluded
That was the IP addresses they had when connected to the old server. IAll workstations used to have an IP address of 10.210.10.x on the old
Presumably the workstations are on the INSIDE and you have them on
the OUTSIDE network even if you correct the mistake in the subnet
mask.
would have thought that they would take the new DHCP settings on the new
server when I released and renewed their IP addresses?
To the Internet.
I have used IPCONFIG /relase and IPCONFIG /renew but they don't get an
address.
I needed to get this done this weekend ready for monday and now I am
stuck.
Please help if you can.
Where does the external NIC "go"? To the Internet? Elsewhere?
.
- Follow-Ups:
- Re: Single 2003 Server with DHCP, DNS and ISA 2006
- From: Herb Martin
- Re: Single 2003 Server with DHCP, DNS and ISA 2006
- References:
- Re: Single 2003 Server with DHCP, DNS and ISA 2006
- From: Herb Martin
- Re: Single 2003 Server with DHCP, DNS and ISA 2006
- Prev by Date: Re: Changing Internet Security level problem
- Next by Date: VPN network in a 2003 server (a routing problem)
- Previous by thread: Re: Single 2003 Server with DHCP, DNS and ISA 2006
- Next by thread: Re: Single 2003 Server with DHCP, DNS and ISA 2006
- Index(es):
Relevant Pages
|
Loading
