Re: 2 NIC SBS2003R2 LAN/WAN Firewall Router Connection Failure

For network setup, take a look at the following diagrams:

Two Nics, a static IP address, ISA, router
(works for SBS with or without ISA)
http://www.smallbizserver.net/tabid/266/articleType/ArticleView/articleId/76/Two-Nics-a-static-IP-address-ISA-router.aspx

Then re-run CEICW which will set up the SBS server to handle DHCP for your
LAN.

When configured correctly, you will essentially have 3 networks, separated
for security:

The Internet
Firewall-Router (public WAN side), Static Public IP from your ISP

Firewall-Router (private LAN side), Static IP 192.168.1.1
SBS External NIC, Static IP 192.168.1.2

SBS Internal NIC, Static IP 192.168.16.2
Workstations, Dynamic IPs 192.168.16.x

--
Merv Porter [SBS-MVP]
============================

"Marcus" <Marcus@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:14DE3A58-36A1-44F6-8F44-B79F64E70118@xxxxxxxxxxxxxxxx
I have installed a 2nd NIC in my SBS2003R2 Server.

I have configured the new NIC (WAN) with IP 192.165.1.30 subnet
255.255.0.0.
I left the old NIC (LAN) with IP 192.165.1.20 subnet 255.255.255.0.

I have a firewall router between my WAN NIC and the ISP. This has an
internet facing static IP of W.X.Y.Z. It has an intranet facing static IP
of
192.165.1.1 subnet 255.255.0.0 (previously 255.255.255.0 before the new
NIC
was installed).

I have set the DHCP scope on the Server to 192.165.1.1 to 192.165.1.254 (I
guess on subnet 255.255.255.0). The exclusion is set from 192.165.1.1 to
192.165.1.10.

I have not defined a second scope on the 255.255.0.0 subnet.

My clients on the LAN can successfully reach the internet.
My server can successfully reach both clients and the internet.

Neither my server nor my clients can reach my firewall router. Before I
installed the 2nd NIC this worked fine. (i.e. before I reset it with a
static
IP on subnet 255.255.0.0 rather than the original subnet of
255.255.255.0).

Q1. Do I have to define another DHCP scope for the new WAN subnet and, if
so, how?
Q2. Do I have to set up a static route from my LAN (clients and server) to
the router and, if so, how?
Q3. Do I have to do anything to my inbuilt SBS Firewall settings (which
are
currently the default ones - I've not messed around with these)?

I need to reach my router in order to change some of the VPN tunnelling
permissions, you see.

Finally, if I plug a LAN laptop directly into the router it can't reach it
either. But the router is working fine...



.

Relevant Pages

  • Re: CEICW Network Error
    ... both NICs on SBS should get DNS from the 'internal' SBS NIC. ... The SBS DNS Server service can then be told to use the router or your ISP's DNS Servers as forwarderby submitting such during the CEICW or manual adjustment, OR you can leave the DNS setting blank during CEICW and SBS DNS will resolve using 'root hints'. ...
    (microsoft.public.windows.server.sbs)
  • Re: Routing 2 Segments on LAN?
    ... it's default gateway defined on the nic on the same subnet as the router.. ... SBS v4.x: microsoft.public.backoffice.smallbiz ... >>> NICS on two different segments? ...
    (microsoft.public.windows.server.sbs)
  • Re: Unable to access https sites
    ... I kow changing the *nix subnet isn't going to work for you, ... > The NT box is being replaced by the SBS. ... I didn't know the two NICs shouldn't be ... >>> network card) connected to a switch and then the router. ...
    (microsoft.public.windows.server.sbs)
  • Re: Install 3 times (triple crown)
    ... [switch (could be built into router)] ... In the above example, the gateway router lan side is on the 192.168.0.x network, as are the wan nics of the SBS boxes. ... built 4 SBS servers with one installation and launched,> which are ...
    (microsoft.public.windows.server.sbs)
  • Re: Setting up wireless in a passthru/bridge mode
    ... then re-run CEICW to configure the SBS server properly (including inputing ... (2 NICs) ... a wired and a wireless. ... Put the wired router between the ...
    (microsoft.public.windows.server.sbs)