Re: SBS 2k3 and Additional Servers

Leonard,

I thank you for your time and input. I disagree with a few points but that
is not to say I do not value what you have said. Again I didn't write my
question to talk about network security but about Windows networking. I
welcome the input but please understand

I concide that I am not a Windows MVP, but I not a beginner either. I have
researched my design and have had experts agree with it, they grubled too but
agreed after an audit. There are pitfalls that have to be addressed but it is
workable. I even passed a security audit from McAfee with this design. You
might not like it but if you dot the i's and cross the t's it is safe as
using SBS itself.

I have already decided to use a different design as I can't get the Windows
networking to work. It seems that SBS itself agrees with all of you and turns
off the external nic of the web server every hour no matter how I adjust the
GPO's and network configs. I say Windows networking because I have used this
design in non Windows networks without this issue of the domain controller
killing the external nic of the web server. So I will move my web servers
outside of the domain and only host the static non-data driven sites from
outside the SBS network and the data driven sites (employee & vendor portal)
from the SBS server so it can access the DB server for content. I will have
to switch the web servers to Linux so I can cluster them without a domain
controller.

Sorry to agrue again but Yes I am the client. This is my company and my
domains I am hosting. If there is anyone coming after me it would be me so I
think I can deal with the client.

I never felt picked on and I do value all the input provided but the point
of the thread is not network security but networking and whats was disabling
the nic. So if I seem to dismiss the security discussion its because that's
not what I'm here to get help with.

Again thank you for your help.

Scott Sledgister
.

Relevant Pages

  • Re: Imminent upgrade to SBS2003 & new hardware
    ... you can't have two sbs's in one network. ... and how best to make use of the old server. ... > have a copy of SBS 2003 which came with this year's Action Pack ... > was advised by people in this group that having a web server sitting ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: Security risks when running IIS without static ip as localhost
    ... > access this web server, it is purely for developing asp pages which will ... > network to a security risk. ... For example, one vector of compromise is someone receives, say, a worm email ...
    (microsoft.public.inetserver.iis.security)
  • Re: How vulnerable server will become if placed on DMZ ?
    ... >> I have a type of Web Server. ... > protect your internal network from a compromised web server. ... A DMZ can ... > network as compared to what you probably have now, a single firewall. ...
    (microsoft.public.win2000.security)
  • Re: oops again
    ... > When you want expose the web server on the local network to the internet, ... > to the internal IP of your web server. ... > You configure the Firewall on the Router to just block every single port. ... > network but does not prevent your PCs from contacting the Internet. ...
    (microsoft.public.inetserver.iis)
  • Imminent upgrade to SBS2003 & new hardware
    ... the new network, and how best to make use of the old server. ... have a copy of SBS 2003 which came with this year's Action Pack ... Currently I have an old 486 machine that I am using as a web server ...
    (microsoft.public.backoffice.smallbiz2000)
Quantcast