Re: ISA Server & a WiFi Hotspot (some DHCP for good measure too)

Hi Fabio -

As the others have mentioned, ISA2k4 is currently not supported on SBS
(either Std or Premium). SBS SP1 will be shipping soon, which will include
a free upgrade to ISA2k4 for SBS Premium customers.

To review - you have LAN clients (I'm assuming wired?) that you want to have
unrestricted access to the LAN, and you want your WiFi clients to be able to
access the internet only? Assuming that your LAN clients are all wired, you
definitely don't need ISA for this . . . all you need is a cheap network
card for your server. Then, you use the wireless router as it was intended
(a router) inline between your DSL & your SBS. For example:

Internet
|
DSL Modem
|
Wireless Router ------- WiFi clients
|
SBS Nic #2
SBS Nic #1
|
LAN Switch
|
LAN Clients

Voila . . . you've got your SBS firewall (whether RRAS in Std or ISA in
Prem) separating your WiFi users from your LAN - your LAN clients have full
access to the LAN, both WiFi & LAN clients have internet access. You enable
DHCP on the wireless router to serve WiFi clients, and you use DHCP on your
SBS to serve your LAN clients. And the best part is that this is a
supportable configuration that you can continue to use your SBS wizards to
maintain & configure (assuming of course that you take ISA2k4 off the box -
but you should be ok once SP1 comes out)

--

Chad A. Gross - SBS MVP
SBS ROCKS!

www.msmvps.com/cgross
www.gosbs.org


Fabio wrote:
> Running an SBS2K3STD installation on a dell server that acts as a web
> server, exchange server, dns server, dhcp server and, of course isa
> server (2k4). I run the server with no monitor/keyboard/mouse in the
> back office. To complicate things, I have a router on which I have
> disabled DHCP and have nothing plugged into the wan port (the dsl goes
> into one nic on the server and the other nic is plugged into port 4 of
> the router). Essentially this "router" is being used exclusively as a
> switch and a wireless access point.
>
> I'm new to ISA, so this may be an easy question. I have an internal
> network (192.168.0.0/24) with 5 client computers. The server is at
> 192.168.0.1 and the above "router/switch" is at 192.168.0.253. In the
> DHCP console I have excluded 192.168.0.1 to 192.168.0.9 from the
> address pool, as well as 192.168.0.14 to 192.168.0.99 and
> 192.168.0.200 to 192.168.0.254. Then, also under the DHCP, I have set
> up a reservation for the mac address of each of my 5 client computers
> for IP addresses 192.168.0.10 to 192.168.0.14. This leaves
> 192.168.0.100 to 192.168.0.199 for any future clients.
>
> The reason that I have done this is because I wanted to set up ISA
> with a network named "Internal" that included my client computers
> (192.168.0.10 to 192.168.0.14) with unfetterd access to the internal
> network and to the internet, and a second network named "Hotspot" (or
> whatever) for 192.168.0.100 to 192.168.0.199 with access only to the
> internet. My intention was to then have ISA redirect client computers
> in the hotspot network to a web site of my creation that would have
> users register before being allowed to proceed to the intended web
> site.
> Obviously my thinking was flawed somewhere along the line because
> when I created the two networks in ISA and clicked on "Apply," my TSE
> session to the server was broken and I could not reconnect. My access
> to the internet was also cut off. As I could not attach a monitor to
> the server from where it was, I had no choice but to shut off the
> server forcefully (sob). Then I moved it to a location with a monitor
> and reverted my ISA networks back to the original setting and
> everything worked happily.
> Whew! I guess my question are: Why did ISA cut me off from my server
> when I created the two networks? Can ISA segregate my internal network
> of 5 computers from a wireless hotspot network so that the hotspot
> network can't see the internal network? Is it best to just get another
> nic and WiFi access point (and assign it a network of 192.168.1.0/24)?
> Can ISA redirect users on the hotspot network to my web site to
> register them, then let them proceed to whatever web site they
> requested and let them have internet access for a period of time
> (however long they've paid for), after which they would have to be
> redirected to the registration site again?
>
> Hope that's not too tough.
>
>
> f


.

Relevant Pages

  • Re: Server/Network setup question
    ... Let's keep the P2P network and the ... SBS server's internal NIC to the switch. ... The internal NIC of the SBS server will default to 192.168.16.2 during the ... you change the IP of the rented printer to 192.168.16.8 (or some ...
    (microsoft.public.windows.server.sbs)
  • RE: Printing from Win9x clients stops
    ... > and make sure this software does not interfere with SBS Server. ... > clients, please disable it and try again. ... Create a local printer and redirect the port to the network server. ...
    (microsoft.public.windows.server.sbs)
  • RE: server/connectcomputer from remote offices
    ... > Thank you for posting to the SBS Newsgroup. ... > should be SBS_LOGIN_SCRIPT.bat on the two DCs for remote clients. ... > DC not SBS 2K3 Server, unless they need to access SBS Resource (e.g. ... > the Copy button and paste the full content to the Newsgroup. ...
    (microsoft.public.windows.server.sbs)
  • RE: Dropped Client Connections
    ... I understand that the SBS clients will lose ... Do all clients lose network connection at same time? ... Do you have single or double NICs on SBS? ... Modify the registry to disable Receive Side Scaling ...
    (microsoft.public.windows.server.sbs)
  • Re: DHCP Fails on Authorized Server
    ... The DHCP shutdowns may because the SBS detects another DHCP in network. ... How to configure Internet access in Windows Small Business Server 2003 ... On the Connection Type page, click Broadband, and then click Next. ...
    (microsoft.public.windows.server.sbs)