Re: one or two NIC cards
- From: ashkaan57@xxxxxxxxxxx
- Date: 7 Apr 2006 12:32:01 -0700
"Crina Li" wrote:
Hi TIA,
Thank you for posting in SBS newsgroup.
From the description, I understand the issue to be: you want to know the
VPN configuration if you have 1 NIC or 2 NICs on SBS. If I have
misunderstood your concerns, please do not hesitate to let me know.
As I know, if you have only one NIC on SBS, you would better to configure
router as VPN server. If you have 2 NICs on SBS, you can follow the below
steps to configure VPN access on an SBS environment:
1. Run CEICW, follow the wizard and select Enable firewall and then make
sure Virtual Private Networking (VPN) is selected in the Services
Configuration page. And make sure you have typed the public FQDN of the SBS
server on the Web Server Certificate page.
2. Run Remote Access Wizard in Server Management\Internet and
E-mail\Configure Remote Access, and select VPN access in the Remote Access
Method page. After finishing this wizard, RRAS is configured to allow
inbound VPN access, and it can assign IP addresses to the VPN clients by
using DHCP.
Note: When we run the remote access wizard to set up the VPN service, we
need to input the public IP address or the public FQDN of the SBS server.
We need to make sure that the address can be accessed from the internet.
3. On the VPN client, go to https://publicFQDN/remote, clear I'm using a
public or shared computer, log in and download Connection Manager.
4. Install Connection Manager on the VPN client.
5. Is there a hardware router installed in front of the SBS server? If so,
ensure that the port forwarding for TCP 1723 and GRE port (protocol number
47) are opened. PPTP VPN is negotiating a connection on TCP port 1723 and
send data to and from the PPTP server using the GRE protocol (IP Protocol
47, 0x2F if you are looking in Network Monitor). You should open port 1723
on the router and also make sure IP Protocol 47 is allowed.
Also you may configure network on SBS with 2 NICs and client computer as
following:
On SBS:
External NIC:
IP: assigned by your ISP or your hardware router
Gateway: your ISP or your Hardware router IP
DNS: SBS INTERNAL NIC IP as the only entry
Internal NIC:
IP: Fixed IP
Gateway: None
DNS: SBS INTERNAL NIC IP as the only entry
In the DNS console (dnsmgmt.msc), right click your ServerName and click
properties. In the Forwarders tab, your ISP DNS server IP should be
inputted there.
On workstation inside your SBS local subnet
IP: Assigned by DHCP on SBS
Gateway: SBS internal NIC IP
DNS: SBS INTERNAL NIC IP as the only entry
For one Nic, you need to configure on SBS server and client computer as
following:
IP: Fixed IP address
Gateway: your Hardware router IP
DNS: SBS NIC IP as the only entry
In the DNS console (dnsmgmt.msc), right click your ServerName and click
properties. In the Forwarders tab, your ISP DNS server IP should be
inputted there.
On the client workstation, please make sure the configuration:
IP: Assigned by DHCP on SBS or your hardware router
Gateway: hardware router
DNS: SBS INTERNAL NIC IP as the only entry
Regarding information:
825763 How to configure Internet access in Windows Small Business Server
2003
http://support.microsoft.com/?id=825763
323381 How to Allow Remote Users to Access Your Network in Windows Server
2003
http://support.microsoft.com/?id=323381
323441 How To Install and Configure a Virtual Private Network Server in
Windows
http://support.microsoft.com/?id=323441
305550 How to configure a VPN connection to your corporate network in
Windows
http://support.microsoft.com/?id=305550
Please feel free to contact me if you have any questions or concerns
regarding the issue.
I appreciate your time and look forward to hearing from you.
Best regards,
Crina Li (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| From: ashkaan57@xxxxxxxxxxx
| Newsgroups: microsoft.public.windows.server.sbs
| Subject: one or two NIC cards
| Date: 6 Apr 2006 14:44:44 -0700
| Organization: http://groups.google.com
| Lines: 10
| Message-ID: <1144359884.794152.175330@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
| NNTP-Posting-Host: 70.108.241.50
| Mime-Version: 1.0
| Content-Type: text/plain; charset="iso-8859-1"
| X-Trace: posting.google.com 1144359890 21255 127.0.0.1 (6 Apr 2006
21:44:50 GMT)
| X-Complaints-To: groups-abuse@xxxxxxxxxx
| NNTP-Posting-Date: Thu, 6 Apr 2006 21:44:50 +0000 (UTC)
| User-Agent: G2/0.2
| X-HTTP-UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US;
rv:1.7.12) Gecko/20050915 Firefox/1.0.7,gzip(gfe),gzip(gfe)
| Complaints-To: groups-abuse@xxxxxxxxxx
| Injection-Info: i40g2000cwc.googlegroups.com; posting-host=70.108.241.50;
| posting-account=3hAtLwwAAADWjTWuDkRFaldPioBNaYQs
| Path:
TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTFEEDS01.phx.gbl!newsfeed00
.sul.t-online.de!t-online.de!border2.nntp.dca.giganews.com!border1.nntp.dca.
giganews.com!nntp.giganews.com!postnews.google.com!i40g2000cwc.googlegroups.
com!not-for-mail
| Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:258654
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Hi,
| what are the pros/cons of one or two NIC cards in a 2003 SBS server?
| Does it make much difference (easier/hardr) if I want to set up a VPN
| on my server?
| If I use two NICs, do I have to make my server act as a router?
| If you could point me to a document on this, it would also be
| appreciated.
|
| TIA.
|
|
Thanks for the replies.
Is there any downside to setting up the server to act a router?
Once in a while, I have to reset my router because I don;t have
Internet access (which comes back after router is reset.) If I use my
server as the router, then I'll have to restart the server which would
means any opened files/applications need to be saved and closed. With
an external router, I can continue my work on local network even if the
router is being reset. Am I wrong in this assumtion?
.
- Follow-Ups:
- Re: one or two NIC cards
- From: Owen Williams
- Re: one or two NIC cards
- References:
- one or two NIC cards
- From: ashkaan57
- RE: one or two NIC cards
- From: "Crina Li"
- one or two NIC cards
- Prev by Date: Re: User Workstation Firewalls & Policy
- Next by Date: RE: SBS sp1 upgrade failed
- Previous by thread: RE: one or two NIC cards
- Next by thread: Re: one or two NIC cards
- Index(es):
Relevant Pages
|
