Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

LAN with Internet connection and Win 2003 DC

Posted on 2004-08-17
14
Medium Priority
?
219 Views
Last Modified: 2010-04-19
Hi, I finally could added a computer to a domain and was also able to restrict my own objects to users. Ok, now actually I use the Internet connection share to other 5 PCs, I plugged the main cable connection to the "uplink" from the miniswith and all PCs have access, I also set "obtain ip addess automatically" but now that I have this server 2003 and I did specify a static IP address: 192.168.0.1 and client computer's DNS that same IP address how can I have both services Internet access and DC?

Thanks.
0
Comment
Question by:jcastill
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 7
14 Comments
 
LVL 4

Expert Comment

by:Kittrick
ID: 11826026
Your domain controller has to be able to tell your computers apart.  You will have to give each of your computers on the network a unique IP address, but put the server computers' 192.168.0.1 address as the gateway for the client computers. In each client computer, give the generic 255.255.255.0 for the DNS. This should work.



Hope that helps!
Kittrick
0
 

Author Comment

by:jcastill
ID: 11826106
ok

i didn't understand this part:
"Your domain controller has to be able to tell your computers apart."
0
 
LVL 4

Expert Comment

by:Kittrick
ID: 11826138
you have a domain controller but you use it to share out the internet, so I made the assumption that your computers are on the domain but not seperated by IP address. Please correct me if my assumption is wrong.

Kittrick
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 

Author Comment

by:jcastill
ID: 11826169
yes all the computers are in the domain, we use it because we can control restrictions. before using the domain controller we plugged the main connection cable to the uplink port of the miniswith and all computers attached to it got internet access automatically.

thanks :D
0
 
LVL 4

Expert Comment

by:Kittrick
ID: 11826384
That makes sense. You can control internet access through the server then. How are you sharing out your internet connection. Unfortunately MS has several ways to share it out and if it's not correct, it can not mix in an AD enviornment so well. You should install the DHCP service on your server if you are sharing out your connection though it.  It can be found by going to "Configure Your Server"--->Add/Remove Programs--->Networking Services--->DHCP . If you do this, you will have to go back to your client computers and make sure that the IP address and the DNS addresses are set to "set IP address dynamically" and "set DNS address Dynamically". This should work for both Internet and your AD.

Hope that helps!
Kittrick
0
 

Author Comment

by:jcastill
ID: 11826917
hi Kittrick, now i want to know if i can keep my connection at it is. We have the main ADSL in the uplink at the miniswitch and that gives everyone internet access. So now with this scenario if I install th e server 2003 with the DC and the AD can I have these users gain access?

With the uplink these users have gotten dinamic IPs address 200.x.x.x and I set server 2003 with 192.168.0.1

thanks :D
0
 
LVL 4

Expert Comment

by:Kittrick
ID: 11834399
yes your users will gain access to both. You could keep your network "as is". Looking at your numbering scheme, it looks like maybe you are having problems because your computers are technically on different networks the way your IP addresses are set up. Can you get into the uplink and change settings?? If you can, you might want to change the settings to assign your computer the same number even though they are dynamically assigned. Many routers/firewalls will allow you to change the settings. Chances are, if your IP address is so different on the server than the rest of the network, the DNS for it is probably different too with no one else on the same subnet. That's why you won't get both Internet and server access by the clients.  You could also assign a static number on the server that is in the same range as those assigned by the miniswitch and assign the DNS the same as those clients on the network. You can find this out on the clients by going to the command prompt and typing :
        ipconfig /all

Hope This Helps!
Kittrick

0
 

Author Comment

by:jcastill
ID: 11834567
ok, i cannot setup the uplink from the miniswitch because it's a very small one and it's cheap :D ok I'm going to first try adding a 2nd NIC to one of the workstations and assign one internet and static IP and keep the one that's provided from the ADSL and see what happens. Thanks.
0
 
LVL 4

Expert Comment

by:Kittrick
ID: 11835014
You won't need to install a second NIC if you had the 2003 server DHCP...the data flow would look like this:

                                                  miniswitch
                                                        |
                                                        |
                                                 Windows 2003 server
                                                         |
               ======================================
               |                |                 |                    |           |            |
  THE COMPUTERS ON YOUR NETWORK CONNECTED BY DHCP SERVICE ON Windows 2003 SERVER


even though your actual network physically is wired like this (using the miniswitch as a hub I'm assuming):

                                                    miniswitch
                                                           |
                        ===================================
                         |        |           |                  |                   |              |
                                   ALL COMPUTERS ON YOUR NETWORK


Kittrick
0
 

Author Comment

by:jcastill
ID: 11835192
yes my network is like the last diagram. We like that because we don't need to have one computer to be turned on to share the Internet connection. A question if we implement as your first drawing if the server 2003 is crashed or turned off the rest of the PCs will loose access to the Internet? thanks Kittrick
0
 
LVL 4

Expert Comment

by:Kittrick
ID: 11835414
Yes, you will lose connection to the internet with the first diagram if the server goes down because all traffic is routed through it . If you just changed the IP number on your server to reflect the IP range of your clients it should work for both internet and AD for your clients.

Kittrick
0
 

Author Comment

by:jcastill
ID: 11835612
Kittrick now, i know it might sound crazy but i guess it's the only thing we can do, so imagine if we just add a 2nd NIC to our workstations so we have real IP addresses from ISP and the other is for internal to connect to the server, so should this way also work? that's the only thing i'l like to know. Thanks a lot.
0
 
LVL 4

Accepted Solution

by:
Kittrick earned 1000 total points
ID: 11835716
Your idea for a second NIC will work, but it's counterproductive because you don't have enough ports anyway for the miniport right??  I've done the two NIC config before, but it was only because we had an internal network we wanted to seal off from the rest of the company. Is it safe to say that you don't want to put your server on the network?? All of your computers are given dynamic IP addresses anyway...which means they are probably class C addresses not visible on the Internet because the DHCP server by your ISP issued them for internal use only, but can be seen by those in your company with the same IP numbering schemes. It's up to you depending on what you want to do, but unless you want to wall off your server from an outside office or something, I think it's counterproductive.

Kittrick

0
 

Author Comment

by:jcastill
ID: 11835755
yes we have enough ports in the miniswitch. well thx for your time, i'll accept this answer, cheers :D
0

Featured Post

Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…
Want to learn how to record your desktop screen without having to use an outside camera. Click on this video and learn how to use the cool google extension called "Screencastify"! Step 1: Open a new google tab Step 2: Go to the left hand upper corn…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question