[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

Can I put a W2K server machine between modem and wireless access point which is a DHCP and NAT server

Posted on 2003-03-24
10
Medium Priority
?
247 Views
Last Modified: 2010-03-17
I currently have the following home network configuration:

Broadband line into broadband modem-> into wireless access point (3 COM 3CRWE51196 - acting as a DHCP server and providing NAT has 3 "wired" ports)
Clients access internet/filesharing through wireless PCI cards.

Now I wish to change things for a specific reason and put a machine running Windows 2000 Server between the Modem and the access point so that it is not hidden by the NAT.

This machine has 2 network cards, one will be for the modem to go into and the other will be for the private LAN.
Now this is where I get confused.

The wireless Access Point has a specific port for the broadband (a DSL port) which i assume i will no longer use instead connecting the W2K machine into one of the standard Ethernet ports?

Also should I have the W2Kserver with a static private LAN IP and exclude this from the range the wireless access point gives out?

Will the LAN pcs be able to access the internet properly through this configuration - any special settings/software on the W2K server(I was going to use Microsofts ISA server as a firewall?
Will any of this be affected by the NAT on the access point which cannot be turned off? - the clients will therefore have to access the internet via the wireless gateway into the W2K server through the broadband modem......

Sorry for the questions...I just want to understand this and be sure of what will happen when i do this...thanks...

0
Comment
Question by:mistajjj
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
10 Comments
 
LVL 1

Accepted Solution

by:
GrindCrusher earned 280 total points
ID: 8199409
There should be a problem as long as you have ICS running on the 2K machine.

 Here would ba an example ip layout:
( Keep in mind that this is based on the access point  doing NAT with the 192.168.0.0 network)

Win 2k
Nic 1 -> Going to ISP
IP:  66.12.34.5
Mask: 255.255.255.192
Gateway: 66.12.34.1

Nic 2 -> Going to Access Point
IP:  172.16.10.1
Mask: 255.240.0.0


Access Point
Port going to win 2k
IP:  172.16.10.1
Mask: 255.240.0.0
Gateway: 172.16.10.1



Client 1
IP:  192.168.1.2
Mask: 255.255.255.0
Gateway: 192.168.1.1

Client 2
IP:  192.168.1.3
Mask: 255.255.255.0
Gateway: 192.168.1.1

0
 
LVL 1

Expert Comment

by:GrindCrusher
ID: 8199420
oops there is a typo in the access point. It should be:

Access Point
Port going to win 2k
IP:  172.16.10.2
Mask: 255.240.0.0
Gateway: 172.16.10.1


0
 

Author Comment

by:mistajjj
ID: 8203353
Cool thats great...how do I install/setup Internet Connection Sharing on the W2K box?
0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 
LVL 1

Expert Comment

by:GrindCrusher
ID: 8211432
Navigate to the control panel and click on the Network and Dial-up Connections icon

Double click on the network connection you will be using for your Internet access and click on the sharing tab

Place a check in the 'share this connection' box

Here is a link with a little more detail:

http://www.annoyances.org/exec/show/ics_2000

0
 

Expert Comment

by:joeyxiong
ID: 8213064
I hope that the two of you are aware of the vulnerabilities of both ISA Server and ICS.  Why wouldn't you just put ISA Server on the server to protect it and sit it behind the wireless gateway.  That specific gateway router has DMZ capabilities.  Set up the server as a DMZ host and you should be able to do most if not all you need to do with your server.
0
 
LVL 1

Expert Comment

by:GrindCrusher
ID: 8213866
I am aware of the issues with ISA and ICS. If you want a "more" secure server then I would go with what joey says about putting it behind the router.

The only problem with putting your server behind your firewall is now your allowing external networks into your private network.

 The issue comes down to how much you want to protect your server and how much you wanna protect your intranet.
0
 
LVL 1

Expert Comment

by:jslingerland
ID: 8215826
yo - seting your computer as the dmz host allows no protection at all -

windows 2000 server - dont use ic sharing - dhcp
0
 

Expert Comment

by:joeyxiong
ID: 8218085
That's why I specified to install ISA Server and set it as a DMZ host.  This definitely is more secure than sitting the server between the ISP and the router.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes you have to pull out old tricks to get a new firewall to work… While we were installing a new Sonicwall at a customers site we found that sites they were able to visit before were not working.  It seemed random and we could not understa…
Why do some people recommend buying business VoIP from an ISP? What are the benefits to my company? What are the costs?
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…
Suggested Courses

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question