SBS2003 w/Router or wo/Router

Discussion in 'Windows Small Business Server' started by Steve, Aug 8, 2004.

  1. Steve

    Steve Guest

    I have a new computer I'd like to use as my Windows SBS 2003 server. I have
    two NICs installed. I'm wondering if I need to use a router. I have cable
    internet access and the premium vs. of SBS 2003. My only concern is that I
    migh complicate things and make it too difficult to manage with a router and
    ISA 2000. I have a wireless router I thought I'd like to use as an access
    point. But I don't want it on the internal network. Any ideas?

    TIA
    Steve
     
    Steve, Aug 8, 2004
    #1
    1. Advertisements

  2. Hi Steve

    Does your cable modem have a static IP address without authentication
    required? What type of Wireless access do you want, do you want access to
    your domain from the access point? If you only want Internet access for
    wireless users without Domain access you could put the wireless router
    between the modem and the External NIC for that. If they need Domain access
    hook it to your switch/hub on your internal NIC. See
    http://www.smallbizserver.net/Default.aspx?tabid=52 for a good pictorial on
    the subject

    Frank McCallister
    COMPUMAC
     
    Frank McCallister, Aug 8, 2004
    #2
    1. Advertisements

  3. Steve

    Steve Guest

    Thanks Frank,
    I have purchased one static IP address. I use Charter and the way they work
    here is: Either a Router or NIC connected to the cable modem will be
    assigned a static IP address. It is assigned by the MAC address of the
    device. They have to change things on their end whenever I decide to
    connect a different Router or NIC to the modem. The techs on the phone call
    it a "sticky ip" not a "true static IP" I can put a hub or switch on the
    modem and connect up to 3 devices. Each could have a reserved static
    although we can't afford that. My experience is that the IP will not change
    unless the device does. I want the guaranteed IP for my web site so I pay
    them. I want to provide internet access for wirless clients without them
    having access to the domain. I would like for them to also have access to a
    printer. If I want to use the domain resources with wireless clients we can
    VPN in. I'm thinking maybe I shoud put a switch on the modem then two
    routers on the switch. One would be a Linksys 4 port Standard Cable Router
    the other a NetGear 4 port Cable Router with Wireless capability. I already
    own these routers. I'll have the static IP assigned to the Linksys and use
    a Dynamic IP on the wireless NetGear. The Linksys would go to the Server's
    external NIC and the wireless NetGear would just sit there waiting for
    wireless clients. I could just go straight from the switch to the Server's
    external NIC? Still don't know how complicated all this will be with the
    addition of ISA 2000? Also with this plan does anyone know if I could
    easily provide a printer to occasional wireless clients? I guess I could
    add an old computer and printer to the NetGear wirless router? Seems kind
    of inefficient though? Could domain users acess this workgroup printer?

    TIA
    Steve
     
    Steve, Aug 8, 2004
    #3
  4. Steve

    Rodwhite Guest

    Steve,

    It really depends on your knowledge level as to the complexity of your
    network. I personally perfer to have two firewalls on my network.
    However, an open port is an open port. I think the community can give you
    a few ideas.

    Thanks for using SBS2003

    Roderick [MS]
    MCSE2000 & MCSE2003
    Designing, Deploying, and Managing a Network
    Solution for a Small/Medium-Sized Business - MCP 70-282

    Windows Small Business Server 2003
    http://www.microsoft.com/windowsserver2003/sbs/default.mspx

    Tip: You can search for this or other support information by visiting
    Microsoft Online Support: http://support.microsoft.com

    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Rodwhite, Aug 8, 2004
    #4
  5. Steve

    Mario Guest

    Hi Steve.
    I hope this helps you decide what you want to do.
    Inside network
    if you have a printer, which you would like to make available to everyone on
    the inside network, the printer will have to be attached on the inside with
    a network connectivity card, rather like a Jet Direct network printer
    interface.
    if you wish to have occassional wireless clients connect to this printer,
    you will need a wireless access point on the inside of the network, on the
    same subnet as the inside clients. this could be a standard LAN scenario
    with wireless.
    Outside network.
    If you wish to have PCs connect to the network, and hence the outside
    wwworld, then they would either have to authenicate to your inside netowrk,
    or your access point must be on the outside - so that they can connect to
    the www and bypass the secure internal LAN. If you like, this is like a
    small wireless hotspot, which are public access wireless access points which
    are becoming commonplace now.

    Printer PCs possible internal Wireless AP
    | | |
    switch / hub
    |
    Server internal NIC - Net printer shared here. static IP on LAN
    ISA sits here
    Server External NIC - static IP external subnet
    |
    | Netgear wireless Router AP
    | |
    Linksys providing NAT - static IP outside
    |
    DSL Modem
    |
    Cable service

    I hope I have drawn this crude diagram OK for you.
    A problem with implementation could be DHCP.
    where will your occassional users get a network IP from?
    The Netgear AP will give out addresses, but your server does the same, and
    so it will complain that another DHCP service is on the network. If your
    have a cable router and a Wireless cable router, it might be worth using the
    Netgear in place of the Linksys. You may save the use of one device. If I
    was in your shoes, I'd use the Netgear as an AP on the inside of the network
    Will these occassional users be able to join their PCs to the Domain?
    If yes, then put all your wireless on the inside
    If no, then the wireless AP may need to be on the outside, and this may mean
    access to networks services ( like printers may be unavailable)

    sincere apologies if I have confused the issue, but imho to acheive what you
    want, the Wireless AP might need to be on the inside of the network.
    Occassional users might need to authenticate to the internal LAN, but you
    could create a generic ID that just gives access to the printer and web
    access, and closing off any network places that its not appropriate for them
    to access. things might get further complicated if these users need to (say)
    collect email - with that in mind, you really need to find out what the
    occassional users might be doing
     
    Mario, Aug 8, 2004
    #5
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.