Solved

Changing from public ip addressing to private (concerns & suggestions)

Posted on 2007-12-06
2
221 Views
Last Modified: 2010-04-21
We have a 30-45 node network with public ip addresses. We plan to change our network over to a private-IP based network. I'm in charge of planning this project and make sure it goes smoothly as well as execute the steps needed to make it happen.

I'm looking for things I should be concerned about, things I should be looking out for and any suggestions.

One of my concerns at this point is making changes in DNS in regards to active directory. When you set up a domain controller, the dns usually gets set up automagically. What will I need to do to reconfigure it?
0
Comment
Question by:TrinityAssembly
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 2

Accepted Solution

by:
lavazzza earned 500 total points
ID: 20420246
When migrating from a public to private IP addressing scheme there are several things to be aware of.  First, what kind of access, if any, is needed from the public internet into your private network.  Examples here would we Web Servers, Mail Servers, FTP, etc.  Ensure that the nat device you will be utilizing will ensure proper connectivity to whatever servers are necessary for the public to do business with you.

Next, When working with AD, Windows is very weary about the IP addresses of its DC's changing. Follow the instructions here http://technet2.microsoft.com/WindowsServer/en/library/80e432f2-10b6-4768-8a3e-54e357e8fc441033.mspx?mfr=true to change the IP address, then when it looks for DNS, make sure you use the new private IP address of the server hosting DNS (usually itself in a domain of your size).  

As for DNS, I would remove the reverse lookup zone of the current public IP address space and create a new lookup zone for the new private address space.  Allow pointer records to be dynamically created when the host records are and you will have the reverse lookup zone populated almost as fast as DHCP hands out the new information.  

For DHCP, I would remove the current scope and start over,  It's not difficult and that way no mistakes can happen.  

If WINS is involved, delete the exsisting wins lookup zone.  Since WINS is broadcast via NETBIOS, the table will rebuild in notime as well.

That is it in a nutshell,  If you are not currently running DHCP, there are scripts out there that can change via netsh a domain machine from static to dynamic and from there pull down DHCP info.  My guess on the hardest part, or the part that can be a gotcha, is the public to private natting that will occur, please make sure you have gone back and checked all services required by the public.

Good Luck!

Sean
0
 

Author Closing Comment

by:TrinityAssembly
ID: 31413165
thanks
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most DNS problems are VERY easily troubleshot and identifiable if you can follow the steps a DNS query takes. I would like to share the step-by-step a DNS query takes from the origin to the destination. _____________________________________________…
Sometimes clients can lose connectivity with the Lotus Notes Domino Server, but there's not always an obvious answer as to why it happens.   Read this article to follow one of the first experiences I had with Lotus Notes on a client's machine, my…
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question