Solved

Single Static IP Multiple Internal Servers (web, ftp, database, DNS,mail, Application)

Posted on 2006-06-24
10
251 Views
Last Modified: 2013-12-14
I'd like to set up secure and efficient system for that case I decided to use all servers stand alone (web, DNS, ftp, Database etc. on different PC)

About 10 servers which are in LAN can they use only one static IP to connect internet and give ftp, web, mail serviceses etc.  to user.
0
Comment
Question by:tyildirir
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +2
10 Comments
 
LVL 13

Expert Comment

by:itcoza
ID: 16978163
Hi tyildirir,

No problem.  Do you have access to ISA 2004?  If you have you can use this secure firewall product (or any other firewall product for that matter) to perform the required caching and also port forwarding to the Internal server.  You get security and availability for the price of one device.

ISA Setup how-to:
http://www.microsoft.com/technet/prodtechnol/isa/2004/plan/exchage2003.mspx
http://www.microsoft.com/technet/prodtechnol/isa/2004/plan/publishingwebservers.mspx
http://download.microsoft.com/download/a/8/e/a8e8cd94-e923-4e16-a0e9-7631b95f5623/ISA2004_Overview.pps

Regards,
M
0
 
LVL 11

Expert Comment

by:Eric
ID: 16985511
Understand that placing these server on your internal network, then direct port forwarding makes you vulnerable to any exploits.  At a minimum keep them updated.  It be best to move them to a DMZ.  Microsoft products are not the safest things to give direct internet traffic.
0
 
LVL 20

Expert Comment

by:brwwiggins
ID: 16987639
You may not even need ISA, depending on what you want to run you may be able to use simple port forwarding on the firewall as a lot of the services you mention all run on different ports.

0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 

Author Comment

by:tyildirir
ID: 16991494
I am still thinking do I need  ISA whether or not. I have ADSL connection with good upload capacity which is 1.3 Mbit.

I am managing about 30 domains.  including web sites hosting e-mail hosting. Also some web sites has got database most of them MySQL. for more efficiency I'd like to keep databases in diffrent server. I know many people keeping web sites e0mail servers and dtabase on the sama server the architecture may be fine if you are hosting 3-5 domains on your web server but the domains will increase the architecture is not working well. I have got WRT WAG seriees Linksys routers. Because when I read on many forums for usung easy and efficent port forwarding many people using LInksys(I know cisco is the best but now I need budget).

thanks for anyy answer
0
 
LVL 13

Accepted Solution

by:
itcoza earned 134 total points
ID: 16992511
Hi,

The thing you need to consider is security.  Port forwarding will provide you with a measure of security, but will not provide intrusion and hacker attack detection.  If you are making money hosting web sites and it happens to be important to you, then maybe you would like to consider the security you need to provide.  If you are hosting for other people and not just yourself, you need to ask yourself, can I afford to not be as secure as my budget allows.

Have a look at the following products that will allow for true firewall protection:
http://www.sonicwall.com/products/index.html  (have a look at the TZ series)
http://www.cyberguard.com/products/firewall/SG_Family/SG560.html?lang=de_EN
0
 
LVL 27

Assisted Solution

by:pseudocyber
pseudocyber earned 133 total points
ID: 17008562
I agree with itcoza - you're a professional doing professional things.  You need professional equipment - a "real" firewall, and a 'real' router - like a small Cisco 1800 at least.
0
 
LVL 11

Assisted Solution

by:Eric
Eric earned 133 total points
ID: 17009612
Also consider, Watchguard firebox products.
http://www.watchguard.com

Or a cheap way out,
http://m0n0.ch/wall/

http://www.pfsense.com/index.php?id=1
0
 

Author Comment

by:tyildirir
ID: 17016640
yes pseudocyber

I am thinking professional system design for future. But I'd like to ready tomorrow's professinal design from today.
now I do not have to many domains and user but next year I can be host about 150 domains . and 500-1000 e-mails

I am gonna start with budget, however the design could be extend eassily for future. You also suggest me cisco 1800 I am gonna look at this.

Thanks guys
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

    Over the past few years, small business and home owners have become so dependent on internet that a need for redundancy has arisen.    What happens when your small business or home / home office loses its internet connection?  The results c…
This solves the problem of diagnosing why an internet connection is no longer working. It also helps identify the likely cause of the lost connection if the procedure fails to re-establish your internet connection. It helps to pinpoint the likely co…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question