Solved

Internet Sharing between domains

Posted on 2007-11-30
7
208 Views
Last Modified: 2013-11-30
I have two domains, A and B. Domain A connects to the Internet via a Sonicwall hardware firewall and all is well. I would like Domain B to connect to the Internet as well through the same Internet connection. Problem is that I have the two domain controllers using the 192.168.0.1 address on their network cards and they are on separate networks physically. I have installed another network card on the Domain B server to facilitate Internet connectivity via Domain A Internet, what else must I do to have this working? I can connect the second card from Domain B to the Domain A switch, assign an IP from that domain and Internet will work fine on the server only but the clients cannot connect unless I enable Internet Connection sharing on the connection. As you may be aware Microsoft will need the 192.168.0.1 address to enable ICS and I will end up with an IP conflict in that case. What should I do?
0
Comment
Question by:colinkhan
  • 4
  • 3
7 Comments
 
LVL 19

Expert Comment

by:darron_chapman
ID: 20381809
If the only connection between Domain A and Domain B is through that second NIC on the 2003 server connected to the Sonicwall, then it won't matter that the Internal NIC on Domain B's server has the same IP of Domain A's server as they won't physically be able to see each other.  If this is not the case and the servers are connected through the same switching network, then you will not be able use ICS to share the connection.

Do not use ICS on a network that:

• Uses static IP addresses
• Has a Windows Server 2003 domain controller
• Uses other DNS servers, gateways, or DHCP servers
http://support.microsoft.com/kb/324286

Instead of using ICS, you could use Routing and Remote Access.  This provides a much more flexible way of sharing out an internet connection.  http://www.jsifaq.com/SF/Tips/Tip.aspx?id=7351
0
 
LVL 1

Author Comment

by:colinkhan
ID: 20381988
The sonicwall has a switch built in which is connected back to domain A, this is where I need to connect the second NIC from Domain B to facilitate Internet access, problem is having the clients connect to this Internet connection from Domain B since by default the Internet will not be shared unless I use ICS, and this is where the IP problem comes in...
0
 
LVL 19

Expert Comment

by:darron_chapman
ID: 20382214
I really think the only way to get around your problem is to not use ICS and use Routing and Remote Access (NAT).  This will allow you to set the IP of the NIC to whatever IP you want.  The second NIC on your Domain B server will be on the same subnet as the sonicwall, but the first NIC can be set to whatever IP you want.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 1

Author Comment

by:colinkhan
ID: 20395100
Ok but how will the sharing be facilitated for Domain B? VIa routing and remote access as well?
0
 
LVL 19

Expert Comment

by:darron_chapman
ID: 20395540
On server B, when you set up routing and remote access, you choose which card will be your public (Internet) connection.  This will be the one facing the Sonicwall appliance.   And you will choose which card will be your private (LAN) card, this will be the one facing the computers on Domain B.  After you have it all set up, your computers on Domain B will need to be configured to use server B's IP as the gateway and the IP of course will need to be on the same subnet.  
0
 
LVL 1

Author Comment

by:colinkhan
ID: 20398403
Ok I have installed the Routing and remote access on the server. What do I do next? I have Internet access on the server via the second NIC which I configured to work with the Sonicwall appliance. Do I need to create a static route and if so on which interface?
0
 
LVL 19

Accepted Solution

by:
darron_chapman earned 500 total points
ID: 20398524
When you go into the Routing and Remote Access window, you right-click on your local server and click Configure and Enable Routing and Remote Access.  When you do that, a wizard will come up and step you through setting this up and will automatically create a static route.

Click Next
Click Network address translation
Under Use this public interface, chose the NIC facing the firewall
Click finish

Now you can go to the client computers and configure them as follows
IP: an IP on the same subnet as the servers first NIC
Subnet Mask: match what the sever has
Gateway:  IP of first NIC on server
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
recover deleted files by error 37 108
Installing trusted root certificate 12 49
windows 10 versions 3 36
When syspreping a clone machine 7 24
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
In this article, I will show you HOW TO: Install VMware Tools for Windows on a VMware Windows virtual machine on a VMware vSphere Hypervisor 6.5 (ESXi 6.5) Host Server, using the VMware Host Client. The virtual machine has Windows Server 2016 instal…
This Micro Tutorial will give you a basic overview of Windows DVD Burner through its features and interface. This will be demonstrated using Windows 7 operating system.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question