2 x 200 servers one internet

Posted on 2006-05-17
Last Modified: 2010-04-11
Hello Eperts,
i have 2 clients to wich are in the same biulding both clients have a dc each sharing the internet, they both want to to be isolated from each other so i though easy i will just run a couple of routers? BUT, they want to share a particular application on one of the servers?
can you shed some light on this to how i could go about it?

Question by:m8trex
    LVL 26

    Expert Comment

    by:Leon Fester
    Isolate each network firstly by:running on different IP ranges(i.e. segment the network)

    Consider installing a suitable software firewall between the two networks, may I recommend ISA Server 2004 - I'm biased OK :)

    Install Shared application on firewall server.
    LVL 11

    Accepted Solution

    Firstly comment to above poster. Installing applications on a firewall is a bad idea.. A firewall should be a host that is only used for that reason.

    You can isolate them a number of different ways.

    Put them on different Ip ranges and Vlans if they are sharing the same switching infrastructure.

    Place a firewall device of <insert favourite flavour here> since I am not biased as to any vendors product or solution. Create an acl which will allow the other client network to access the application server.

    Or if there is a security concern.

    Put the application server into vlan 3 running on a seperate ip range behind the firewall and create Acls to allow and disallow access from each perspective client which wiill be accessing it .

    Obviously the application will have some dependance on how this is implemented.

    Author Comment

    thanks guys,
    I have also done a bit more investigating,
    is it possible to have a router/ dsl modem in one ip rage then run into seperate routers in differnet ip ranges with subnet
    then run a ms virtual server 2005 on one of the dc2000 servers and run a seperate lan card back into router/ dsl modem range on output?

    Thanks for you advise
    LVL 11

    Expert Comment

    Yes this is possible.

    Author Comment

    thanks prueconsulting,
    security wise and stability would you think this would be a good option?
    just seems easier?

    Ta m8trex
    LVL 11

    Expert Comment

    This is very similar to the suggestion of using VLANs to segregate. If implemented properly it can be very secure and stable.
    LVL 3

    Assisted Solution

    don't use vlans unless you have too.  

    I would opt for a single router in the middle with at least 4 ports.

    1 port goes to your computer
    2 port goes to other computer
    3 port is configured as "DMZ" de-militarized zone" where the application will be installed on a computer and plugged in to this port.. Then you can both access it but not each other.
    4 port is the "WAN" port that connects to your cable/dsl modem, or your higher up router.

    Featured Post

    Enabling OSINT in Activity Based Intelligence

    Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

    Join & Write a Comment

    Healthcare providers, insurance companies and other covered entities trust eFax Corporate to transmit their most sensitive documents. eFax Corporate can help your organization implement a HIPAA compliant cloud faxing solution.
    Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now