?
Solved

Good Setup Configuration

Posted on 2006-11-13
10
Medium Priority
?
272 Views
Last Modified: 2010-04-10
Hi, I have a small company that I support that has around 15 people & will eventually grow to around 100 or so.  Right now they share a network with us...however, that is something that we would like to eliminate.  We want them to get their own services up & going, so I was hoping that someone could give me some suggestions on what to use.  I need to get something that is easy to configure & then even easier to maintain.  They will have a T1 going in, so let's base it on that premise

- Domain Controller - I would like this to be Windows 2003, can it double as their file-server, or is that a bit of a taboo?  How about WINS?
- Router/Firewall
- DHCP server?
- VPN?

Please let me know your suggestions...this is a Windows enviroment & email is not needed since their email is hosted.

Thanks!
0
Comment
Question by:rustyrpage
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
10 Comments
 
LVL 12

Expert Comment

by:Freya28
ID: 17931791
is this homework?

first you have to establish a budget.  also how much downtime can they afford and willing to accept.  then you have licensing to deal with, if you are keeping it legitamit.  your budget will determine if you can afford another server dedicated for file and prnt sharing, but it can be done on the DC.  For your router, Firewall- i would go with cisco products.  if it is a DS1 (T1) that they are gettign then you would need a WIC card for the router.  you can then throw a pix501,515 or even the new cisco ASA models in there. either one of these devices support site to site and remote client vpn.

but if you just want to segregate them form your network, you can get a layer 3 switch, carve off a vlan that cannot communicate with yours and limit bandwidth
0
 
LVL 6

Author Comment

by:rustyrpage
ID: 17931821
"Hi, I have a small company that I support".

It is not homework, I just want other people's opinions.
0
 
LVL 12

Expert Comment

by:Freya28
ID: 17931845
i saw that. i have to ask though.   whatever,  form the response i gave you, how does any of that fit into your situation and budget
0
Bringing Advanced Authentication to the SMB Market

WatchGuard announces the acquisition of advanced authentication provider, Datablink, with one mission – to bring secure authentication to SMB, mid-market, and distributed enterprises with a cloud-based solution, ideal for resale via their established channel & MSSP community.

 
LVL 6

Author Comment

by:rustyrpage
ID: 17931949
The problem is that a Cisco solution, although a good name, may not be an easy implementation...unless they have changed from last time I used it.

Can you think of anything that I am missing to get them completely up & running?  Would you do the DHCP from the router/firewall?  What about WINS?
0
 
LVL 12

Expert Comment

by:Freya28
ID: 17931973
there is nothign wrong with cisco.  and in my opinion, it is a very easy IOS to learn.  you have your choice between a simple command line or some easy GUIs.  i woudl do the dhcp from the domain controller.  i would run WINS also.  even in MS active directory 2003 WINS is needed.
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17932047
Alternate solution would be the Netscreen Firewalls from Juniper. They are pretty good, easy to learn and provide more feature set. Right from NS5GT or the newest SSG5, it provides Deep Inspection capabilities (Intrusion Prevention) and high throughput than PIX 501/506.

www.juniper.net Take a look at it.

Cheers,
Rajesh
0
 
LVL 12

Expert Comment

by:Freya28
ID: 17932070
i would go with the Cisco ASA model.  it has aswesome throughput.  very good device and supports Web VPN
0
 
LVL 13

Accepted Solution

by:
prashsax earned 2000 total points
ID: 17934144
One server for Domain Controller. Same would work as WINS and DHCP server.(Windows 2003 Standard)

Get, one more server for Filer.
Fast Disk subsystem(SCSI 15K RPM), lots of RAM(1GB), Could be a single processor, Gigabit NIC.

As for terminating T1, I would use a simple cisco 2600 series router.

As, for VPN, you could using Windows Inbuit RRAS service for PPTP Dial-in VPNs. Its easy and simple to configure.

This would require you to spend less as well.


0
 
LVL 12

Expert Comment

by:Freya28
ID: 17934175
for vpn i recommend hradware.  cisco pix, ASA, sonicwall, etc.
0
 
LVL 7

Expert Comment

by:dlangr
ID: 17934286
You should never have only one domain controller. However, if you make a full system backup every day, store that offsite, do not mind your AD and services depending on them being offline for a extended period, you might be able to live with it until you can spend more money.
0

Featured Post

Enroll in August's Course of the Month

August's CompTIA IT Fundamentals course includes 19 hours of basic computer principle modules and prepares you for the certification exam. It's free for Premium Members, Team Accounts, and Qualified Experts!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
This month, Experts Exchange’s free Course of the Month is focused on CompTIA IT Fundamentals.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Suggested Courses
Course of the Month12 days, 15 hours left to enroll

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question