Setting up DNS so the domain sees the Internet after adding a DSL router

I am installing a new Win 2003 Server connected to a Dlink Wireless router which then connects to verizon DSL. The server sees the internet and connects just fine as does the Wi-Fi (outside of the domain). How do I configure the DNS/DHCP on the server so the domain served by the server can see the Internet. As a side question, I'd like to have the WiFi in the domain and place a standard Asante Firewall/Router between the DSL and the server. Where and how should I configure the WiFi then and same question as above but with the Asante; how to get the entire domain to see the Internet through the Router. I had a nightmare with Verizon who now is enforcing the "one IP" number and had accidently leased more than one I guess. The intent is to:
1. hardware firewall the domain
2. insure that only one IP number is leased
3. have the Win 2003 server assign the internal IP numbers via either reserved IPs or DHCP but prefer not to use the firewall/router (unless someone can show why it'd be best)


Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

<How do I configure the DNS/DHCP on the server so the domain served by the server> can see the Internet.>

*Setup DNS:

*Setup DHCP:

*Setup win2003 Firewall: [Later setup Asante Firewall/Router]

What model Dlink DSL router?
*Setup Dlink DSL router: [Find your model]

**Your Wireless menus should look and function like this dlink:

The first NAT menu option allows you to either enable or disable NAT, and also to enable or disable DMZ functions, whilst specifying an IP address. If an IP address is specified and used as a DMZ server, it will basically forward all external ports of the router to this one IP address.

Most modems have NAT built into them - This allows multiple IP addresses on the Customer side of the network to be translated into the 1 IP address given by the ISP. This is actually one of the best forms of firewalls available.
This way the outside world ONLY sees the IP address given by the ISP, but it NEVER sees the 1,2,3,...124 IP addresses given by the DHCP to the actual computers.

In conjunction with basic NAT and DMZ, it is also worth taking into account the IP masquerade options in the menu. The pass through page has two options, both enabled by default which are related to two different types of VPN- IPsec and PPTP.
The options are designed to avoid any NAT functioning on these types of traffic as they pass through the router.
How this would hence work, I’m not quite sure, as NAT is designed to rewrite the source IP address from a local IP to the real IP presented externally to the router. If this does not take place, then the server on the Internet would not be able to connect back to the computer behind the router. The masquerade timer page basically defines how long the connection through is remembered by the router once a connection has been made.

The Multi-Nat feature is something not documented in (the current version of) the manual that is available. It allows you to configure the NAT in different ways for different IP addresses on the local network, and works best if you also have multiple static IP addresses from your ISP.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Do you need more information?
Have you resolved this problem?
Can you close this question?
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.