Re: Allowing Visitor Internet access

So would it look like this? This is from an earlier post but I put in how I
think the IP addresses would work does this make sense?

+-------+
|DSL Mdm|
+-------+
|
+-------+ static IP 75.144.23.1
| Wired | Gateway IP 75.144.23.2
| | Router IP 192.168.1.1
| Router| DHCP Server Enabled -
+-------+ Exclude 1st 10 IPs *****HOw do you exclude 1st 10 IP?*****
| |
| +-------------+
| |
|192.168.1.2 |
| [Ext. NIC] DHCP IP range 192.168.1.3 - 10
+-------+ +---------------+
| dhcp | | wireless |
|enabled| | router |
|SBS2003| +----------------+
+-------+
| [Int. NIC]
|192.168.16.1
|
+--------+
| Switch |
+--------+
| | | |
| | | |
[Domain PCs]

"Merv Porter [SBS-MVP]" wrote:

There is only one "wireless" router in this example (unless you actually
have two devices on your network). The router has a WAN (public) side and a
LAN (private) side. In the router configuration, you forward incoming
traffic for your selected SBS services to the IP address of the SBS
"external" NIC. You turn on DHCP for the wireless router. If you only need
wireless Internet access (web browsing) for your guests, you do not need a
second wireless router. DMZ is not necessary.

For guests, you could use static IP address in the same subnet as the
wireless router's LAN, but this could be a nightmare to administer because
the onsite admin would probably have to have access to each guest's laptop
since guests may not know how to assign a static IP address to their laptop.
They would also have to disable or delete the static IP when they left your
premises. Probably best to keep guest access as automatically IP
assignment.

Does that answer your questions?

--
Merv Porter [SBS-MVP]
============================

"Chad" <Chad@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:E9FCDA53-3C37-4C51-B9A1-D7B266A9D828@xxxxxxxxxxxxxxxx
Merv, in this example do I forward the ports from the 1st router or the
second router or both? Do I turn on DHCP for the 1st wireless router to
provide IP addresses for the wireless clients to access the internet and
disable DHCP for the second wireless router?

What about setting DMZ for the first router so all the ports are
accessible?
Can a wireless router support wireless clients without DHCP being enabled?

Thanks for your input.

Chad



"Merv Porter [SBS-MVP]" wrote:

Hi Chad,

See the diagram at:

Two Nics, a static IP address, ISA, router
(the diagram works with or without ISA)
http://www.smallbizserver.net/Articles/tabid/266/articleType/ArticleView/articleId/76/Two-Nics-a-static-IP-address-ISA-router.aspx

The WAN side of your router will use the static IP address supplied by
your
ISP. The workstations will be 192.168.16.x.

--------------------------------------------------------------
Internet
|
Router (WAN, static IP 75.144.223.1)
|
Router (LAN, static IP 192.168.1.1)
|
SBS (External NIC, static IP 192.168.1.2)
||
SBS (Internal NIC, static IP 192.168.16.2)
|
Switch
| | | | | |
Workstations (dynamic IPs 192.168.16.x)
--------------------------------------------------------------

In the router, forward the ports for the services you need to the
external
NIC IP address:

SSL... 443
RWW... 4125
VPN... 1723 and GRE Protocol 47 (for PPTP VPN)
Mail Server... 25 (if you'll be hosting your own Exchange mail server)
RDP... 3389 (straight RDP session to SBS server)

Once you get it physically set up, run CEICW to configure the SBS server
for
DHCP and other services:

CEICW Walkthrough
http://www.sbs-rocks.com/sbs2k3/sbs2k3-n2.htm


--
Merv Porter [SBS-MVP]
============================

"Chad" <Chad@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:4629921D-9CCE-4931-B2CA-276673857B4F@xxxxxxxxxxxxxxxx
Merv thanks for the super quick response!

I will have a static IP address provided from comcast so how will these
IP
addresses be assigned?

For example:
cable (static) 75.144.223.1 - Wireless router w/ dhcp
192.168.1.1...2...3....etc - SBS external NIC 75.144.223.2 - SBS
internal
NIC
(w/dhcp) 192.168.16.1

All internal LAN computers 192.168.2....3....4 etc

Thanks

"Merv Porter [SBS-MVP]" wrote:

Hi Chad,

Yes. With two NICS in the SBS server, the SBS LAN is isolated from
the
router LAN. You could then turn on the DHCP service on the router and
it
should not interfere with the SBS DHCP service. That would give your
your
wireless guests Internet access (only) by providing them an IP address
in
the same subnet as the LAN side of the router.

Owen Williams wrote a great article on setting up an even more secure
wireless network:

Configuring Secure Wireless Network Access with Microsoft® Windows®
Small
Business Server 2003
http://home.comcast.net/~clearviewtc/

--
Merv Porter [SBS-MVP]
============================

"Chad" <Chad@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:B661612A-B735-4E47-BD82-0979C164F6D8@xxxxxxxxxxxxxxxx
Is there a way to provide wifi access to visiting clients just using
a
wireless router? For example cablemodem - wireless router -
sbs2003
(2
nic
standard) - switch - internal lan. Thanks

"Owen Williams" wrote:

Bibbob:

Following up on my earlier post (to Merv's response), I am using a
configuration like this at one client's site so that an SBS2003
network
and a Guest PC can share a DSL Internet connection:

+-------+
|DSL Mdm| 192.168.1.1
+-------+
|
+-------+ 192.168.2.1
| Router| DHCP Server Enabled -
+-------+ Exclude 1st 10 IPs
| |
| +-------------+
| |
|192.168.2.2 |
| [Ext. NIC] |DHCP IP
+-------+ +-------+
|SBS2003| |GuestPC|
+-------+ +-------+
| [Int. NIC]
|192.168.16.1
|
+--------+
| Switch |
+--------+
| | | |
| | | |
[Domain PCs]

SBS2003 runs either the RRAS or ISA2004 firewall so Ext. NIC
(192.168.2.2) is protected.

"GuestPC" could be a Wireless Access Point with a STATIC address
of,
for
example, 192.168.2.3 (which is used primarily for WAP
administration).
Then, guest PCs with wireless capabilities associate with the WAP
and
get an IP address from the (wired) Router.

Since Wireless Routers are easier to find (and often less
expensive)
than WAPs, you can use one as a WAP provided you:

- disable the DHCP server on the Wireless Router
- connect an Ethernet cable from the (wired) Router to one of the
switch
jacks (there are most often 4) on the Wireless Router. Do NOT
connect
anything to the Wireless Router's "WAN" or "Internet" jack.

-- Owen Williams










.

Relevant Pages

  • Re: Loss of connection
    ... could disable the DHCP on the router to use it like a switch and have your ... broadband plugged directly into a nic on the server, but I (and most of us ... configure the nics in your server with the following static info: ... I'm betting that with your current setup, DHCP is ...
    (microsoft.public.windows.server.sbs)
  • Re: Help! Clients are off the network.
    ... Whether your router is connected to the switches or not it should supply internet connectivity for her as a wireless client. ... DHCP on the router would have been off (or SBS would have complained about an additional DHCP server on the network) and if her PC was getting a DHCP address it would have been getting it from DHCP on the SBS. ... > nic but I will think it through before I pull out any nics this time:) ...
    (microsoft.public.windows.server.sbs)
  • Re: First OEM Install - Standard Edition
    ... notebook I can access the router and confirm DHCP off (and reach the 'net ... But from the server I can't even ping the router! ... If the two NICs are of the same type, ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN IPSEC issue, can you please help?
    ... but use the router IP as the gateway but leave the DNS as the server address? ... The SBS server handles DHCP and DNS just like your current setup. ... I have a SBS2003 server with 2 nics. ...
    (microsoft.public.windows.server.sbs)
  • Re: Connecting SBS thru a Router
    ... As to DHCP, you cannot have two pieces of equipment both giving out DHCP's - ... so either the router does it, or the server does it. ... connect your current NIC to the router which is connected to the Internet. ... >>do you have one or two nics in the server? ...
    (microsoft.public.windows.server.sbs)
Loading