Re: Allowing Visitor Internet access

Hi Chad,

See the diagram at:

Two Nics, a static IP address, ISA, router
(the diagram works with or without ISA)
http://www.smallbizserver.net/Articles/tabid/266/articleType/ArticleView/articleId/76/Two-Nics-a-static-IP-address-ISA-router.aspx

The WAN side of your router will use the static IP address supplied by your
ISP. The workstations will be 192.168.16.x.

--------------------------------------------------------------
Internet
|
Router (WAN, static IP 75.144.223.1)
|
Router (LAN, static IP 192.168.1.1)
|
SBS (External NIC, static IP 192.168.1.2)
||
SBS (Internal NIC, static IP 192.168.16.2)
|
Switch
| | | | | |
Workstations (dynamic IPs 192.168.16.x)
--------------------------------------------------------------

In the router, forward the ports for the services you need to the external
NIC IP address:

SSL... 443
RWW... 4125
VPN... 1723 and GRE Protocol 47 (for PPTP VPN)
Mail Server... 25 (if you'll be hosting your own Exchange mail server)
RDP... 3389 (straight RDP session to SBS server)

Once you get it physically set up, run CEICW to configure the SBS server for
DHCP and other services:

CEICW Walkthrough
http://www.sbs-rocks.com/sbs2k3/sbs2k3-n2.htm


--
Merv Porter [SBS-MVP]
============================

"Chad" <Chad@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:4629921D-9CCE-4931-B2CA-276673857B4F@xxxxxxxxxxxxxxxx
Merv thanks for the super quick response!

I will have a static IP address provided from comcast so how will these IP
addresses be assigned?

For example:
cable (static) 75.144.223.1 - Wireless router w/ dhcp
192.168.1.1...2...3....etc - SBS external NIC 75.144.223.2 - SBS internal
NIC
(w/dhcp) 192.168.16.1

All internal LAN computers 192.168.2....3....4 etc

Thanks

"Merv Porter [SBS-MVP]" wrote:

Hi Chad,

Yes. With two NICS in the SBS server, the SBS LAN is isolated from the
router LAN. You could then turn on the DHCP service on the router and it
should not interfere with the SBS DHCP service. That would give your
your
wireless guests Internet access (only) by providing them an IP address in
the same subnet as the LAN side of the router.

Owen Williams wrote a great article on setting up an even more secure
wireless network:

Configuring Secure Wireless Network Access with Microsoft® Windows® Small
Business Server 2003
http://home.comcast.net/~clearviewtc/

--
Merv Porter [SBS-MVP]
============================

"Chad" <Chad@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:B661612A-B735-4E47-BD82-0979C164F6D8@xxxxxxxxxxxxxxxx
Is there a way to provide wifi access to visiting clients just using a
wireless router? For example cablemodem - wireless router - sbs2003
(2
nic
standard) - switch - internal lan. Thanks

"Owen Williams" wrote:

Bibbob:

Following up on my earlier post (to Merv's response), I am using a
configuration like this at one client's site so that an SBS2003
network
and a Guest PC can share a DSL Internet connection:

+-------+
|DSL Mdm| 192.168.1.1
+-------+
|
+-------+ 192.168.2.1
| Router| DHCP Server Enabled -
+-------+ Exclude 1st 10 IPs
| |
| +-------------+
| |
|192.168.2.2 |
| [Ext. NIC] |DHCP IP
+-------+ +-------+
|SBS2003| |GuestPC|
+-------+ +-------+
| [Int. NIC]
|192.168.16.1
|
+--------+
| Switch |
+--------+
| | | |
| | | |
[Domain PCs]

SBS2003 runs either the RRAS or ISA2004 firewall so Ext. NIC
(192.168.2.2) is protected.

"GuestPC" could be a Wireless Access Point with a STATIC address of,
for
example, 192.168.2.3 (which is used primarily for WAP administration).
Then, guest PCs with wireless capabilities associate with the WAP and
get an IP address from the (wired) Router.

Since Wireless Routers are easier to find (and often less expensive)
than WAPs, you can use one as a WAP provided you:

- disable the DHCP server on the Wireless Router
- connect an Ethernet cable from the (wired) Router to one of the
switch
jacks (there are most often 4) on the Wireless Router. Do NOT connect
anything to the Wireless Router's "WAN" or "Internet" jack.

-- Owen Williams






.

Relevant Pages

  • Re: Still cant connect to RWW or OWA remotely
    ... No Phantom NICs as far as I can see. ... that it can not find the server. ... Configure your Router as an Eithernet Bridge. ... Once you have this then configure the Routers Firewall and Port ...
    (microsoft.public.windows.server.sbs)
  • Re: Still cant connect to RWW or OWA remotely
    ... No Phantom NICs as far as I can see. ... that it can not find the server. ... Configure your Router as an Eithernet Bridge. ... Once you have this then configure the Routers Firewall and Port ...
    (microsoft.public.windows.server.sbs)
  • Re: Still cant connect to RWW or OWA remotely
    ... laptop plugged into port on DSL router. ... service, e-mail, and RWW is available to all users on the network. ... The server is a SBS2003 SP1 Standard box without ISA, ... of the two NICs by clicking the Advanced tabs, it won't open that box, ...
    (microsoft.public.windows.server.sbs)
  • Re: Still cant connect to RWW or OWA remotely
    ... The server is a SBS2003 SP1 Standard box without ISA, ... the two NICs by clicking the Advanced tabs, it won't open that box, and ... program or service is running that might use the network address translation ... Is the Modem also your Router? ...
    (microsoft.public.windows.server.sbs)
  • Re: Using DHCP to separate activity?
    ... Server 2003 even if they are on the HCL for ... You could then connect the current router to the second NIC ... internal wireless devices. ... Cascading a Linksys Router to Another Linksys Router ...
    (microsoft.public.windows.server.sbs)
Loading