Re: Allowing Visitor Internet access

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

If the partner uses a wireless connection to a WAP outside of your client's
network, the partner won't know (or care) that they aren't connecting to the
Internet from the LAN. They'll just fire up their laptop and connect to the
web. No discussion needs to take place between your client and their
partner other than: you can get access to the Internet by configuring your
laptop to automatically get an IP address via your wireless NIC. The
partner is happy... your client is happy... you're happy.

--
Merv Porter [SBS MVP]
===================================
"Bitbob" <Bitbob@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:EEE28164-B1C0-43E8-95B0-D93C578341F2@xxxxxxxxxxxxxxxx
> Owen: lets assume the laptop belongs to a trusted business partner or
> client
> and that he does not want access to the local domain but only wants access
> from inside the local lan to the internet. My client does not want to
> "insult" his partner/client by implying that he has not kept up the
> security
> of his laptop. So given this scenario I have to provide the safe
> connection
> "within these parameters" for the clients client. So I guess what I need
> to
> Know is what firewall settings in ISA 2004 would configure such a "safe"
> connection.
>
> "Owen Williams" wrote:
>
>> Bibbob:
>>
>> Following up on my earlier post (to Merv's response), I am using a
>> configuration like this at one client's site so that an SBS2003 network
>> and a Guest PC can share a DSL Internet connection:
>>
>> +-------+
>> |DSL Mdm| 192.168.1.1
>> +-------+
>> |
>> +-------+ 192.168.2.1
>> | Router| DHCP Server Enabled -
>> +-------+ Exclude 1st 10 IPs
>> | |
>> | +-------------+
>> | |
>> |192.168.2.2 |
>> | [Ext. NIC] |DHCP IP
>> +-------+ +-------+
>> |SBS2003| |GuestPC|
>> +-------+ +-------+
>> | [Int. NIC]
>> |192.168.16.1
>> |
>> +--------+
>> | Switch |
>> +--------+
>> | | | |
>> | | | |
>> [Domain PCs]
>>
>> SBS2003 runs either the RRAS or ISA2004 firewall so Ext. NIC
>> (192.168.2.2) is protected.
>>
>> "GuestPC" could be a Wireless Access Point with a STATIC address of, for
>> example, 192.168.2.3 (which is used primarily for WAP administration).
>> Then, guest PCs with wireless capabilities associate with the WAP and
>> get an IP address from the (wired) Router.
>>
>> Since Wireless Routers are easier to find (and often less expensive)
>> than WAPs, you can use one as a WAP provided you:
>>
>> - disable the DHCP server on the Wireless Router
>> - connect an Ethernet cable from the (wired) Router to one of the switch
>> jacks (there are most often 4) on the Wireless Router. Do NOT connect
>> anything to the Wireless Router's "WAN" or "Internet" jack.
>>
>> -- Owen Williams
>>


.

Relevant Pages

  • Re: Network address finder
    ... > and/or wireless) and a new wireless access point that ... I seem to have got the WAP to perform as it ought /sometimes/. ... Connections -> Ethernet Cable Connection Status ... cannot use either the supplied (Windows) configuration software ...
    (comp.sys.acorn.networking)
  • Re: Wireless Access Point
    ... Not sure, the AP is for handheld computers, for package bar code scanning. ... We had a connection before the WAP, ... In general with wireless access points or wireless routers, you should only log into them to make alterations with physical connections, not via wireless. ...
    (microsoft.public.windows.vista.hardware_devices)
  • Re: WiFi installtion assitance if possible
    ... > with her wifi connections as well. ... Consider a Linksys WRT54G instead (a router and WAP combined, ... allows connection to the network and can be used by ... both wireless and wired computers to share a dial-up connection.. ...
    (alt.internet.wireless)
  • Re: Is wireless viable on and SBS network?
    ... You should be able to use the wireless as transparently as a physical cable, ... and tuning the firewall features based upon the WAP you are connecting to. ... WAP outside your trusted LAN with a firewall between the WAP and the LAN. ... > We have just installed a D-Link WAP to provide a connection for two XP Pro ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: TV service query ? ? ?
    ... a wireless router. ... a router with extended coverage. ... cable and a wireless connection that you can not see. ... is to have users downloading r/t video, large video files, or other ...
    (alt.home.repair)