Solved

Good Setup Configuration

Posted on 2006-11-13
10
266 Views
Last Modified: 2010-04-10
Hi, I have a small company that I support that has around 15 people & will eventually grow to around 100 or so.  Right now they share a network with us...however, that is something that we would like to eliminate.  We want them to get their own services up & going, so I was hoping that someone could give me some suggestions on what to use.  I need to get something that is easy to configure & then even easier to maintain.  They will have a T1 going in, so let's base it on that premise

- Domain Controller - I would like this to be Windows 2003, can it double as their file-server, or is that a bit of a taboo?  How about WINS?
- Router/Firewall
- DHCP server?
- VPN?

Please let me know your suggestions...this is a Windows enviroment & email is not needed since their email is hosted.

Thanks!
0
Comment
Question by:rustyrpage
10 Comments
 
LVL 12

Expert Comment

by:Freya28
ID: 17931791
is this homework?

first you have to establish a budget.  also how much downtime can they afford and willing to accept.  then you have licensing to deal with, if you are keeping it legitamit.  your budget will determine if you can afford another server dedicated for file and prnt sharing, but it can be done on the DC.  For your router, Firewall- i would go with cisco products.  if it is a DS1 (T1) that they are gettign then you would need a WIC card for the router.  you can then throw a pix501,515 or even the new cisco ASA models in there. either one of these devices support site to site and remote client vpn.

but if you just want to segregate them form your network, you can get a layer 3 switch, carve off a vlan that cannot communicate with yours and limit bandwidth
0
 
LVL 6

Author Comment

by:rustyrpage
ID: 17931821
"Hi, I have a small company that I support".

It is not homework, I just want other people's opinions.
0
 
LVL 12

Expert Comment

by:Freya28
ID: 17931845
i saw that. i have to ask though.   whatever,  form the response i gave you, how does any of that fit into your situation and budget
0
 
LVL 6

Author Comment

by:rustyrpage
ID: 17931949
The problem is that a Cisco solution, although a good name, may not be an easy implementation...unless they have changed from last time I used it.

Can you think of anything that I am missing to get them completely up & running?  Would you do the DHCP from the router/firewall?  What about WINS?
0
 
LVL 12

Expert Comment

by:Freya28
ID: 17931973
there is nothign wrong with cisco.  and in my opinion, it is a very easy IOS to learn.  you have your choice between a simple command line or some easy GUIs.  i woudl do the dhcp from the domain controller.  i would run WINS also.  even in MS active directory 2003 WINS is needed.
0
Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

 
LVL 32

Expert Comment

by:rsivanandan
ID: 17932047
Alternate solution would be the Netscreen Firewalls from Juniper. They are pretty good, easy to learn and provide more feature set. Right from NS5GT or the newest SSG5, it provides Deep Inspection capabilities (Intrusion Prevention) and high throughput than PIX 501/506.

www.juniper.net Take a look at it.

Cheers,
Rajesh
0
 
LVL 12

Expert Comment

by:Freya28
ID: 17932070
i would go with the Cisco ASA model.  it has aswesome throughput.  very good device and supports Web VPN
0
 
LVL 13

Accepted Solution

by:
prashsax earned 500 total points
ID: 17934144
One server for Domain Controller. Same would work as WINS and DHCP server.(Windows 2003 Standard)

Get, one more server for Filer.
Fast Disk subsystem(SCSI 15K RPM), lots of RAM(1GB), Could be a single processor, Gigabit NIC.

As for terminating T1, I would use a simple cisco 2600 series router.

As, for VPN, you could using Windows Inbuit RRAS service for PPTP Dial-in VPNs. Its easy and simple to configure.

This would require you to spend less as well.


0
 
LVL 12

Expert Comment

by:Freya28
ID: 17934175
for vpn i recommend hradware.  cisco pix, ASA, sonicwall, etc.
0
 
LVL 7

Expert Comment

by:dlangr
ID: 17934286
You should never have only one domain controller. However, if you make a full system backup every day, store that offsite, do not mind your AD and services depending on them being offline for a extended period, you might be able to live with it until you can spend more money.
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now