Re: ISA Server & a WiFi Hotspot (some DHCP for good measure too)
- From: "M. Hayes" <MHayes@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 28 Apr 2005 00:30:01 -0700
Uh, Chad? Dual DCHP? Bad Idea, or am I missing something. Anyway, there is a
really good file I have 'got to find' so i can give him the link. I've used
this to allow ppl to take a lil internet from me without making my LAN
avaiable. I can't figure out what PC it's on Fab. chk back 2morrow
"Chad A. Gross [SBS MVP]" wrote:
> Hi Fabio -
>
> As the others have mentioned, ISA2k4 is currently not supported on SBS
> (either Std or Premium). SBS SP1 will be shipping soon, which will include
> a free upgrade to ISA2k4 for SBS Premium customers.
>
> To review - you have LAN clients (I'm assuming wired?) that you want to have
> unrestricted access to the LAN, and you want your WiFi clients to be able to
> access the internet only? Assuming that your LAN clients are all wired, you
> definitely don't need ISA for this . . . all you need is a cheap network
> card for your server. Then, you use the wireless router as it was intended
> (a router) inline between your DSL & your SBS. For example:
>
> Internet
> |
> DSL Modem
> |
> Wireless Router ------- WiFi clients
> |
> SBS Nic #2
> SBS Nic #1
> |
> LAN Switch
> |
> LAN Clients
>
> Voila . . . you've got your SBS firewall (whether RRAS in Std or ISA in
> Prem) separating your WiFi users from your LAN - your LAN clients have full
> access to the LAN, both WiFi & LAN clients have internet access. You enable
> DHCP on the wireless router to serve WiFi clients, and you use DHCP on your
> SBS to serve your LAN clients. And the best part is that this is a
> supportable configuration that you can continue to use your SBS wizards to
> maintain & configure (assuming of course that you take ISA2k4 off the box -
> but you should be ok once SP1 comes out)
>
> --
>
> Chad A. Gross - SBS MVP
> SBS ROCKS!
>
> www.msmvps.com/cgross
> www.gosbs.org
>
>
> Fabio wrote:
> > Running an SBS2K3STD installation on a dell server that acts as a web
> > server, exchange server, dns server, dhcp server and, of course isa
> > server (2k4). I run the server with no monitor/keyboard/mouse in the
> > back office. To complicate things, I have a router on which I have
> > disabled DHCP and have nothing plugged into the wan port (the dsl goes
> > into one nic on the server and the other nic is plugged into port 4 of
> > the router). Essentially this "router" is being used exclusively as a
> > switch and a wireless access point.
> >
> > I'm new to ISA, so this may be an easy question. I have an internal
> > network (192.168.0.0/24) with 5 client computers. The server is at
> > 192.168.0.1 and the above "router/switch" is at 192.168.0.253. In the
> > DHCP console I have excluded 192.168.0.1 to 192.168.0.9 from the
> > address pool, as well as 192.168.0.14 to 192.168.0.99 and
> > 192.168.0.200 to 192.168.0.254. Then, also under the DHCP, I have set
> > up a reservation for the mac address of each of my 5 client computers
> > for IP addresses 192.168.0.10 to 192.168.0.14. This leaves
> > 192.168.0.100 to 192.168.0.199 for any future clients.
> >
> > The reason that I have done this is because I wanted to set up ISA
> > with a network named "Internal" that included my client computers
> > (192.168.0.10 to 192.168.0.14) with unfetterd access to the internal
> > network and to the internet, and a second network named "Hotspot" (or
> > whatever) for 192.168.0.100 to 192.168.0.199 with access only to the
> > internet. My intention was to then have ISA redirect client computers
> > in the hotspot network to a web site of my creation that would have
> > users register before being allowed to proceed to the intended web
> > site.
> > Obviously my thinking was flawed somewhere along the line because
> > when I created the two networks in ISA and clicked on "Apply," my TSE
> > session to the server was broken and I could not reconnect. My access
> > to the internet was also cut off. As I could not attach a monitor to
> > the server from where it was, I had no choice but to shut off the
> > server forcefully (sob). Then I moved it to a location with a monitor
> > and reverted my ISA networks back to the original setting and
> > everything worked happily.
> > Whew! I guess my question are: Why did ISA cut me off from my server
> > when I created the two networks? Can ISA segregate my internal network
> > of 5 computers from a wireless hotspot network so that the hotspot
> > network can't see the internal network? Is it best to just get another
> > nic and WiFi access point (and assign it a network of 192.168.1.0/24)?
> > Can ISA redirect users on the hotspot network to my web site to
> > register them, then let them proceed to whatever web site they
> > requested and let them have internet access for a period of time
> > (however long they've paid for), after which they would have to be
> > redirected to the registration site again?
> >
> > Hope that's not too tough.
> >
> >
> > f
>
>
>
.
- Follow-Ups:
- Re: ISA Server & a WiFi Hotspot (some DHCP for good measure too)
- From: Chad A. Gross [SBS MVP]
- Re: ISA Server & a WiFi Hotspot (some DHCP for good measure too)
- References:
- ISA Server & a WiFi Hotspot (some DHCP for good measure too)
- From: Fabio
- Re: ISA Server & a WiFi Hotspot (some DHCP for good measure too)
- From: Chad A. Gross [SBS MVP]
- ISA Server & a WiFi Hotspot (some DHCP for good measure too)
- Prev by Date: Re: Application does not run without logging into the server
- Next by Date: Re: Application does not run without logging into the server
- Previous by thread: Re: ISA Server & a WiFi Hotspot (some DHCP for good measure too)
- Next by thread: Re: ISA Server & a WiFi Hotspot (some DHCP for good measure too)
- Index(es):
Relevant Pages
|
