Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- From: "Merv Porter [SBS-MVP]" <mwport@xxxxxxxxxxxxxxxxxxx>
- Date: Wed, 4 Oct 2006 21:56:22 -0400
Sorry, I just sent a post to correct myself. The servers should be able to
coexist on the same physical network, but isolating at least one of them
with a dual NIC configuration may make administration a bit easier. This
would allow you to run full DHCP service behind the dual NIC server for it's
workstations. The external NIC of SBS2 would be in the same subnet as SBS1
and the router.
--
Merv Porter [SBS-MVP]
============================
"Alan" <alan@xxxxxxxxx> wrote in message
news:el0sKAC6GHA.4996@xxxxxxxxxxxxxxxxxxxxxxx
"Merv Porter [SBS-MVP]" <mwport@xxxxxxxxxxxxxxxxxxx> wrote in message
news:uyKWW2B6GHA.2264@xxxxxxxxxxxxxxxxxxxxxxx
Hi Alan,
How do you plan to isolate the two SBS servers using single NICs and a
common router/firewall? One of the SBS servers will shut down when it
detects the other. That's why I suggested dual NICs in each (which will
isolate the servers).
--
Merv Porter [SBS-MVP]
============================
"Alan" <alan@xxxxxxxxx> wrote in message
news:%233l4z4A6GHA.940@xxxxxxxxxxxxxxxxxxxxxxx
"Merv Porter [SBS-MVP]" <mwport@xxxxxxxxxxxxxxxxxxx> wrote in message
news:eEdA1jA6GHA.4304@xxxxxxxxxxxxxxxxxxxxxxx
You could put two NICs in each SBS server, then attach them to a common
router, and run them as separate domains.
However, the problem may be forwarding the ports used by the services
that both domains may require (email, RWW, OWA, VPN, etc. | ports 25,
443, 1723, 4125, etc.). I believe 4125 can be changed this in the
registry of the server to a different port, and Exchange (port 25) can
be setup to use an alternate port. But 1723, 443 and other ports are
"hard-coded" and can only be forwarded to a one IP.
There are routers that allow dual Internet access and may be useful
(albeit that means another broadband account).
Internet
|
Router --- SBS2 External NIC = SBS2 Internal NIC - Switch - Domain2
Workstations
|
SBS1 External NIC
||
SBS1 Internal NIC
|
Switch
| | | |
Domain1 Workstations
Hi Merv,
I hadn't considered the port forwarding issue.
Both servers are currently in single NIC configuration.
It appears that the new server actually uses POP3 (!) to collect email
so that is not an issue.
We only have 25 and 1723 open on the firewall to our existing SBS, so
that just leaves 1723. If they are using RDP then problem solved, since
we do not allow a direct RDP session through the firewall (has to tunnel
inside a VPN and that can only connect to our Win Server 2003 TS
machine). I could port forward 4125 to their server to probably any
internal IP in their subnet.
Thanks,
Alan.
PS: I have another interesting issue on this new SBS 2003 Prem box, but
I'll start another thread for that!
--
The views expressed are my own, and not those of my employer or anyone
else associated with me.
My current valid email address is:
1bupdvc02@xxxxxxxxxxxxxx
This is valid as is. It is not munged, or altered at all.
It will be valid for AT LEAST one month from the date of this post.
If you are trying to contact me after that time,
it MAY still be valid, but may also have been
deactivated due to spam. If so, and you want
to contact me by email, try searching for a
more recent post by me to find my current
email address.
The following is a (probably!) totally unique
and meaningless string of characters that you
can use to find posts by me in a search engine:
ewygchvboocno43vb674b6nq46tvb
--
The views expressed are my own, and not those of my employer or anyone
else associated with me.
My current valid email address is:
1bupdvc02@xxxxxxxxxxxxxx
This is valid as is. It is not munged, or altered at all.
It will be valid for AT LEAST one month from the date of this post.
If you are trying to contact me after that time,
it MAY still be valid, but may also have been
deactivated due to spam. If so, and you want
to contact me by email, try searching for a
more recent post by me to find my current
email address.
The following is a (probably!) totally unique
and meaningless string of characters that you
can use to find posts by me in a search engine:
ewygchvboocno43vb674b6nq46tvb
I am probably misunderstanding what 'isolate' means / requires.
Do they have to be physically isolated?
I was hoping that, if they are different unrelated domains, and different
subnets, then they would be isolated from each other (in a logical sense
but not physically).
Am I mistaken? If so, I can reconfigure one or both with dual NICs (I was
planning on doing ours that way at Xmas anyway), but if I an get away with
it for three months, that would be good too.
Upon reflection, the LAN side address of a single router cannot
(presumably) be both (say) 10.0.0.254 and 10.0.1.254. Therefore, I have a
problem right there.
If I go with the dual NICs, then I guess the WAN side NICs on the two SBS
machines could be, say, in the 192.168.0.0/24 subnet with the LAN side of
the router being 192.168.0.254 (say).
Thanks,
Alan.
--
The views expressed are my own, and not those of my employer or anyone
else associated with me.
My current valid email address is:
1bupdvc02@xxxxxxxxxxxxxx
This is valid as is. It is not munged, or altered at all.
It will be valid for AT LEAST one month from the date of this post.
If you are trying to contact me after that time,
it MAY still be valid, but may also have been
deactivated due to spam. If so, and you want
to contact me by email, try searching for a
more recent post by me to find my current
email address.
The following is a (probably!) totally unique
and meaningless string of characters that you
can use to find posts by me in a search engine:
ewygchvboocno43vb674b6nq46tvb
.
- Follow-Ups:
- Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- From: SuperGumby [SBS MVP]
- Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- References:
- Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- From: Merv Porter [SBS-MVP]
- Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- From: Merv Porter [SBS-MVP]
- Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- Prev by Date: Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- Next by Date: Re: Service unavailable when going to web workplace
- Previous by thread: Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- Next by thread: Re: Inherited SBS 2003 Prem - Cohabit on phyical LAN with another SBS 2003 Prem Domain?
- Index(es):
Relevant Pages
|
