Re: Networking Question - VLAN's on SBS 2003 Premium SP1
- From: "Mike in Nebraska" <Mike_Webb@xxxxxxxxxxxxxxxxx>
- Date: Tue, 15 Jul 2008 08:14:33 -0500
I'll try it, thanks.
"Terence Liu [MSFT]" <v-terliu@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:ftWVZxl5IHA.3320@xxxxxxxxxxxxxxxxxxxxxxxxx
Hello Mike,
Thank you for your update.
I think this issue happens because you unable to get IP address from the
DHCP running on the router. Since you have install the ISA server, the ISA
by default block DHCP from external network. Therefore, I suggest you
perform the following steps:
1. Set the DHCP on the router, to make a exclusion of IP range. For
example, your router assigns IP 192.168.100.X. Please make the router not
assign IP like 192.168.100.10.
2. Then, you can set the SBS use fix IP (192.168.100.10) by run the CEICW.
Then, all gust wireless clients will get IP address from DHCP on the
router, while the SBS use fix IP on external NIC to connect to the router.
The DHCP running on SBS will only listening on internal NIC of SBS. It
will
assign another subnet (like 192.168.16.X) to internal cable or wireless
clients.
I hope these steps will give you some help.
Thanks and have a nice day!
Best regards,
Terence Liu (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check
the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In
doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no
rights.
--------------------
From: "Mike in Nebraska" <Mike_Webb@xxxxxxxxxxxxxxxxx><FPqpRh$3IHA.4056@xxxxxxxxxxxxxxxxxxxxxx>
References: <upcnOy83IHA.1204@xxxxxxxxxxxxxxxxxxxx>
<ulxUu0C4IHA.2060@xxxxxxxxxxxxxxxxxxxx>
<EPReHGM4IHA.4928@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: Networking Question - VLAN's on SBS 2003 Premium SP1routers
Date: Mon, 14 Jul 2008 14:18:03 -0500
Lines: 277
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.5512
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.5512
X-RFC2646: Format=Flowed; Original
Message-ID: <#jZQrYe5IHA.2332@xxxxxxxxxxxxxxxxxxxx>
Newsgroups: microsoft.public.windows.server.sbs
NNTP-Posting-Host: mail.whoopingcrane.org 69.20.201.26
Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP03.phx.gbl
Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:115216
X-Tomcat-NG: microsoft.public.windows.server.sbs
Finally was able to get some network downtime to make the change in
to try this out. I was unsuccessful. I am trying to use a D-Link DI-524the
wireless router, but - once connected to the SBS box and I've run CEICW,
WAN NIC goes through a 5-second cycle over and over - 2 secondson/connected
follwed by 3 seconds off/disconnected.show
I ran the ISA and SBS BPA's and didn't see anything. System logs jusdt
the NIC entering and exiting the connection state. I'm at a loss. Maybeassistance
it's that I have DHCP turned on for the wireless AP's, and it's competing
with the SBS DHCP service?
I put the old router back in service so I could work on this some more.
Any idceas out there?
Mike
"Terence Liu [MSFT]" <v-terliu@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:EPReHGM4IHA.4928@xxxxxxxxxxxxxxxxxxxxxxxxx
Hi Mike,
Thank you for your reply.
I'm glad the information is help for you.
Please do not hesitate to post in SBS newsgroup if you need any
correspondingin the future. I look forward to working with you again.
Thank you and have a nice day,
Best regards,
Terence Liu (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the
manner.newsgroups so that they can be resolved in an efficient and timely
routerYou can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check
the
"Notify me of replies" box to receive e-mail notifications when there
are
any updates in your thread. When responding to posts via your
newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In
doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly.
Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no
rights.
--------------------
From: "Mike in Nebraska" <Mike_Webb@xxxxxxxxxxxxxxxxx><FPqpRh$3IHA.4056@xxxxxxxxxxxxxxxxxxxxxx>
References: <upcnOy83IHA.1204@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: Networking Question - VLAN's on SBS 2003 Premium SP1
Date: Mon, 7 Jul 2008 07:31:10 -0500
Lines: 166
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.5512
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.5512
X-RFC2646: Format=Flowed; Original
Message-ID: <ulxUu0C4IHA.2060@xxxxxxxxxxxxxxxxxxxx>
Newsgroups: microsoft.public.windows.server.sbs
NNTP-Posting-Host: mail.whoopingcrane.org 69.20.201.26
Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP02.phx.gbl
Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:114184
X-Tomcat-NG: microsoft.public.windows.server.sbs
Good point, thanks. I can use a cross-over cable from the wireless
http://technet2.microsoft.com/WindowsServerSolutions/SBS/en/library/6202a4dfto the wired router to "share" the internet connection and keep thingsdon't
separate.
Mike
"Terence Liu [MSFT]" <v-terliu@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:FPqpRh$3IHA.4056@xxxxxxxxxxxxxxxxxxxxxxxxx
Hello Mike,
Thank you for posting here.
According to your description, I understand that you want to setup
wireless
network in your SBS LAN. If I have misunderstood the problem, please
page:hesitate to let me know.
First, this is a consulting question, but not a technical issue, which
we
focus on in this newsgroup. Therefore, we can give you some general
information.
To deploy the wireless in SBS network, please refer to the following
Configure Wireless Networking on Windows Small Business Server 2003
I'llAPs-3daf-4fa5-9f4d-a409dfddfc171033.mspx?mfr=true
Based on my knowledge, I think you do not need the 3 VLANs in your SBS
LAN.
The VLANs make the network complex, and we are not ensure the DHCP
will
work fine among the VLANs.
I suggest you do not set VLAN in your switch, and connect the wireless
wirelessto the switch directly for the internal wireless client, all the
wireless
or cable clients are in one internal LAN. This will make the ISA
server
2004 configuration easier. We do not need to customize any rules, only
need
to use the default SBS rules, which created by CEICW.
For the wireless guest users, we can make them to connect to your
correspondingrouter. Then, the guest will unable to access any resource on your SBS
LAN,
and could only access Internet thru the router. Please enable DHCP on
the
router for the wireless guest users.
The network likes following:
{Internet}=={wireless router}~~{ wireless guest users}
||
={SBS}=={switch}=={cable clients}
||
={wireless
APs}~~{internal wireless clients}
I hope these steps will give you some help.
Thanks and have a nice day!
Best regards,
Terence Liu (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have
issues
regarding other Microsoft products, you'd better post in the
manner.newsgroups so that they can be resolved in an efficient and timely
book,You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you
check
the
"Notify me of replies" box to receive e-mail notifications when there
are
any updates in your thread. When responding to posts via your
newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although
we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In
doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly.
Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no
rights.
--------------------
From: "Mike Webb" <mikewebb@xxxxxxxxxxx>
Subject: Networking Question - VLAN's on SBS 2003 Premium SP1
Date: Sun, 6 Jul 2008 19:59:03 -0500
Lines: 48
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2800.1409
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409
Message-ID: <upcnOy83IHA.1204@xxxxxxxxxxxxxxxxxxxx>
Newsgroups: microsoft.public.windows.server.sbs
NNTP-Posting-Host: mail.nebraska.tv 71.8.230.10
Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP04.phx.gbl
Xref: TK2MSFTNGHUB02.phx.gbl
microsoft.public.windows.server.sbs:114147
X-Tomcat-NG: microsoft.public.windows.server.sbs
I've got an idea to (finally) extend out LAN so that the staff can get
in
wirelessly and guests can only get to the internet.
I've read and re-read Owen Williams doc, the MS doc and the MS Press
"Deploying Secure 802.11 Wireless Networks with Microsoft Windows".
thatI'dbe
using all 3 to architect this.
But, to begin with, I want to setup and test a very basic system. And
like some feedback on whether I'm correct in my thought process, or
VLAN2forI've strayed and should consider another idea.10
Here's what I've got: 2-NIC box with ISA-2004 SP3, one of which (the
internal) is VLAN-capable; a L2/L3 managed switch, a wireless router,
and
wireless AP's.
Here's what I intend to do for the initial test:
(1) setup 3 VLAN's on the switch - one for admin purposes (VLAN1), one
wireless staff use (VLAN2), and one for wireless guest use (VLAN3).
(2) configure the VLAN-capable NIC for VLAN 2 and VLAN3 (I'll see them
show
up as virtual NIC's in Network Connections once I press OK.
(3) create network sets in ISA 2004 for the IP ranges I'll use for
VLAN3and
VLAN3.
(4) add VLAN2 set to the Firewall Rules the rest of the wired domain
uses
(5) add VLAN3 to Internet Access rule in Firewall Rules
(6) create scopes in DHCP for each IP range I'll use for VLAN2 and
security(7) stop and start Firewall Service
(8) re-run CEICW
(9) set 2 AP's up, one for each VLAN, to test with - using WPA2
if(for now)
Testing:
(1) ensure full access from within the wired LAN (to test that it is
unaffected)
(2) connect a WinXP Pro SP2 laptop to a VLAN2 AP (wirelessly) and see
ifI
get an IP, that I have access to the domain and all shares I normally
am,
and have internet access
(3) connect a WinXP Pro SP2 laptop to a VLAN3 AP (wirelessly) and see
I
get an IP, and that ALL I get is access to the internet.
Will this accomplish my goal to see if the very basics work? And if
not,
what should I change?
--
MikeWebb
Platte River Whooping Crane Maintenance Trust, Inc.
a conservation non-profit (501(c)(3)) organization
.
- References:
- Networking Question - VLAN's on SBS 2003 Premium SP1
- From: Mike Webb
- RE: Networking Question - VLAN's on SBS 2003 Premium SP1
- From: Terence Liu [MSFT]
- Re: Networking Question - VLAN's on SBS 2003 Premium SP1
- From: Mike in Nebraska
- Re: Networking Question - VLAN's on SBS 2003 Premium SP1
- From: Terence Liu [MSFT]
- Re: Networking Question - VLAN's on SBS 2003 Premium SP1
- From: Mike in Nebraska
- Re: Networking Question - VLAN's on SBS 2003 Premium SP1
- From: Terence Liu [MSFT]
- Networking Question - VLAN's on SBS 2003 Premium SP1
- Prev by Date: SBS DS, DNS etc seizing up every few days
- Next by Date: Re: SQL Server question
- Previous by thread: Re: Networking Question - VLAN's on SBS 2003 Premium SP1
- Next by thread: Re: Networking Question - VLAN's on SBS 2003 Premium SP1
- Index(es):
Relevant Pages
|
