New install, w2k3, two nics one to modem one to switch or only one nic? Which is best?

I just installed a Domain in my W2k3 server system, upgrading from workgroup. My sql guru mentioned I should have two network connections on myh server. One for the "in-house" network, and one for the connection to the internet.  Then he said it wasnt necessary.  we were pressed for time.  The server has two built in nics. When we upgraded the system from workgroup to domain we now have the dhcp being provided by the server, and it handles the dns as well.  we disabled the dhcp on the router.  It seems now that I many not even need the router, if i plug one server nic into the cable modem, and the other into the switch that all the workstations are plugged into.  How would the experts advise to set this up?
195ecentralaveAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

QlemoBatchelor, Developer and EE Topic AdvisorCommented:
For security reasons I would let the router do the Internet work. It sure does NAT and serves as s first line of defense. If you connect your server directly to the Internet, attacks could be started much more easier than b< using the router..
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
bbrunningCommented:
You could do without the router but you would first have to setup routing and remote access. That would turn your windows box into the router. Like Olemo said, for security reasons this isn't a good idea.
0
Fatal_ExceptionSystems EngineerCommented:
Forget connecting straight to that Modem...  Disable one of the NICs in the BIOS (I assume they are onboard NICs) and keep your network hidden from prying eyes..  there are some good reasons to connect direct, including perhaps setting up VPNs to your server, but if you are not planning for this, then don't ask for trouble...  Keep DHCP and DNS on your server, especially DNS, since it is required for an AD Integrated Server...
0
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

dan_blagutCommented:
Hi
Put the router back unless you don't have a ISA server, who can protect your network. The Internet is not a joke and if you have SQL published be sure that you have read the Security hardening guide for W2k3 and SQL.
If your server is a DELL you will find a procedure for network load balancing for this card, so you can use both for the case that one will fail.

Dan
0
195ecentralaveAuthor Commented:
Thanks all, I appreciate the input. The router stays.
0
Fatal_ExceptionSystems EngineerCommented:
Thanks, and best of luck..

FE
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Networking

From novice to tech pro — start learning today.