Can a high bandwidth user on LAN have his own WAN connection as well?

Posted on 2008-11-18
Last Modified: 2013-11-09
I've been looking around online but I can't find anyone that has done what I'm thinking of (but maybe that's because it won't work)...heh

I have a client with a small LAN (4 workstations, SBS 2003 server).  One of the users needs to constantly upload and download large files throughout the day, enough throughput that it affects the other users email and web browsing.

They have a desktop with two NIC (running Vista 64).  I was wondering if it's possible to keep the one that is connected to the LAN as is and get a second dedicated internet connection to the other NIC.  Once that's done can Vista/ the domain be configured so that all the local requests go over the first NIC and all the internet requests from only that workstation go to the second, dedicated internet connection.

Does this make any sense?

Question by:nyctechguy
    LVL 18

    Accepted Solution

    Sure, aside from the obvious problem of exposing that machine to viruses/hacks that the other machines are [presumably] protected by with a firewall..

    By risking that machine getting infected/hacked, you are thereby risking each and every machine that is connected to the network (including the SBS server).

    But sure..  It can be done.  Just remove the default gateway on the internal NIC and it should do exactly what you're proposing.

    Author Comment

    Well of course I'd throw in a router/firewall on the external connection. I was just simplifying things in order to focus on the question I had. :)

    So I'd basically setup a static ip on the NIC pointing to the domain LAN and leave off the default gateway and that would cause applications (internet, ftp, etc)  to route over the other line but still send local requests (file and print sharing, outlook/exchange traffic, etc) over the domain LAN?
    LVL 13

    Expert Comment

    Or you could use 1 nic and give him a diffrent Default Gateway than the rest on the LAN side.
    LVL 18

    Expert Comment

    That is true, 2hype, but that leaves the option open for other users to potentially hijack that connection.  It also forces all that traffic over the regular network switches, which may or may not have a negative impact on the performance of the rest of the users.


    Author Comment

    Sorry for not getting back to this sooner.  I have the second line on order, I'll let you guys know once they installed (probably next week).

    Thanks for your help so far!

    Author Comment

    Thanks exx1976, your original idea works perfectly!

    Featured Post

    How to improve team productivity

    Quip adds documents, spreadsheets, and tasklists to your Slack experience
    - Elevate ideas to Quip docs
    - Share Quip docs in Slack
    - Get notified of changes to your docs
    - Available on iOS/Android/Desktop/Web
    - Online/Offline

    Join & Write a Comment

    The Need In an Active Directory enviroment, the PDC emulator provide time synchronization for the domain. This is important since Active Directory uses Kerberos for authentication.  By default, if the time difference between systems is off by more …
    Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now