Internet Sharing between domains

Posted on 2007-11-30
Last Modified: 2013-11-30
I have two domains, A and B. Domain A connects to the Internet via a Sonicwall hardware firewall and all is well. I would like Domain B to connect to the Internet as well through the same Internet connection. Problem is that I have the two domain controllers using the address on their network cards and they are on separate networks physically. I have installed another network card on the Domain B server to facilitate Internet connectivity via Domain A Internet, what else must I do to have this working? I can connect the second card from Domain B to the Domain A switch, assign an IP from that domain and Internet will work fine on the server only but the clients cannot connect unless I enable Internet Connection sharing on the connection. As you may be aware Microsoft will need the address to enable ICS and I will end up with an IP conflict in that case. What should I do?
Question by:colinkhan
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
LVL 19

Expert Comment

ID: 20381809
If the only connection between Domain A and Domain B is through that second NIC on the 2003 server connected to the Sonicwall, then it won't matter that the Internal NIC on Domain B's server has the same IP of Domain A's server as they won't physically be able to see each other.  If this is not the case and the servers are connected through the same switching network, then you will not be able use ICS to share the connection.

Do not use ICS on a network that:

• Uses static IP addresses
• Has a Windows Server 2003 domain controller
• Uses other DNS servers, gateways, or DHCP servers

Instead of using ICS, you could use Routing and Remote Access.  This provides a much more flexible way of sharing out an internet connection.

Author Comment

ID: 20381988
The sonicwall has a switch built in which is connected back to domain A, this is where I need to connect the second NIC from Domain B to facilitate Internet access, problem is having the clients connect to this Internet connection from Domain B since by default the Internet will not be shared unless I use ICS, and this is where the IP problem comes in...
LVL 19

Expert Comment

ID: 20382214
I really think the only way to get around your problem is to not use ICS and use Routing and Remote Access (NAT).  This will allow you to set the IP of the NIC to whatever IP you want.  The second NIC on your Domain B server will be on the same subnet as the sonicwall, but the first NIC can be set to whatever IP you want.
The Ultimate Checklist to Optimize Your Website

Websites are getting bigger and complicated by the day. Video, images, custom fonts are all great for showcasing your product/service. But the price to pay in terms of reduced page load times and ultimately, decreased sales, can lead to some difficult decisions about what to cut.


Author Comment

ID: 20395100
Ok but how will the sharing be facilitated for Domain B? VIa routing and remote access as well?
LVL 19

Expert Comment

ID: 20395540
On server B, when you set up routing and remote access, you choose which card will be your public (Internet) connection.  This will be the one facing the Sonicwall appliance.   And you will choose which card will be your private (LAN) card, this will be the one facing the computers on Domain B.  After you have it all set up, your computers on Domain B will need to be configured to use server B's IP as the gateway and the IP of course will need to be on the same subnet.  

Author Comment

ID: 20398403
Ok I have installed the Routing and remote access on the server. What do I do next? I have Internet access on the server via the second NIC which I configured to work with the Sonicwall appliance. Do I need to create a static route and if so on which interface?
LVL 19

Accepted Solution

darron_chapman earned 500 total points
ID: 20398524
When you go into the Routing and Remote Access window, you right-click on your local server and click Configure and Enable Routing and Remote Access.  When you do that, a wizard will come up and step you through setting this up and will automatically create a static route.

Click Next
Click Network address translation
Under Use this public interface, chose the NIC facing the firewall
Click finish

Now you can go to the client computers and configure them as follows
IP: an IP on the same subnet as the servers first NIC
Subnet Mask: match what the sever has
Gateway:  IP of first NIC on server

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

An introduction to the wonderful sport of Scam Baiting.  Learn how to help fight scammers by beating them at their own game. This great pass time helps the world, while providing an endless source of entertainment. Enjoy!
Windows 10 Creator Update has just been released and I have it working very well on my laptop. Read below for issues, fixes and ideas.
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor ( Top Charts is a view in which you can set seve…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question