SBS 2003 Connection Issue

What do you mean by 'strange IP'? Does it start with 169. ?

Okay:

On the server I have the following:  2x Nic Cards

Server Local Connection: Nic 1
IP: 192.168.16.60
Sub: 2855.255.255.0
Defualt gate way: 192.168.16.1 (Router runnding ADSL)
Prefered DNS: 192.168.16.40

Network Connection (Nic 2)
IP 192.168.16.40
sub: 255.255.255.255.0
Defualt gateway Blank
Prefered DNS: 192.168.40.200

On my Laptop on the local LAN DHCP I get the following IP details:

IP 192.168.16.25
Sub 255.255.255.0
Defualt Gate: 192.168.16.40

I get no Internet no email no file share nothing

Thanks for your help, I can't get it resloved and it making my head hurt

You have both NIC's on the same subnet.
SBS has very specific requirements. 2 network cards is fine but:
If you are going to change the LAN adapter address you MUST use the Change Server IP wizard (see sever management, Internet and e-mail)
I would leave the internal NIC as it is assuming it is NIC 2, but you must change its DNS server to point ONLY to itself 192.168.16.40.
Change the router subnet to something else like 192.168.100.x, and then to properly configure the server you need to run the CEICW (Connect to the Internet wizard on the same page as before. This will set the WAN adapter, configure DNS, set up your DNS forwarders, and configure DHCP for your LAN. The SBS must be the DHCP server for your LAN. Also the physical configuration should be
Internet =>modem=>router=>SBS=>switch=>clients
I would recommend reviewing the following:
How to configure Internet access in Windows Small Business Server 2003
http://support.microsoft.com/kb/825763

Hi RobWill,

How are you? I am confused. Please can you put that into EBGLISh, LOL

I though it was ;-)

SBS is designed to be configured by using wizards. If you do not do so, I can guarantee some services will not work, as a matter of fact some manual changes will completely disable many services.

-Make sure your physical network is as follows:
Internet =>modem=>router=>SBS=>switch=>clients
-Go to network connections and under properties for NIC2 change the Preferred DNS server to 192.168.16.40
-Log onto your router and change its IP from 192.168.16.1 to 192.168.100.1
-In the services management console make sure the DHCP server services is set to automatic and enabled
-Run the "Configure e-mail and Internet connection Wizard' which you can start by going to Server Management > Internet and E-mail > connect to the Internet. This will configure all networking and MUST be run

If not familiar with SBS the following is an important read:
Introduction to Windows Small Business Server for Enterprise IT Pros
http://www.microsoft.com/downloads/details.aspx?FamilyID=71211053-ccd6-4f2b-bbd9-5e7b97c232ec&DisplayLang=en

Okay I will try this but I thought that SBS 2003 should be the DHCP?

Yes it should. I thought I said that
"-In the services management console make sure the DHCP server services is set to automatic and enabled"
The CEICW will configure it.

Where the physical configuration is:
Internet =>modem=>router=>SBS=>switch=>clients
it is possible to also leave DHCP enabled on the router. If you do so it will provide an IP to the WAN NIC of the server, and the SBS will provide DHCP for all client machines. This is because they are on different network segments. It is much better though to simply disable DHCP on the router totally and assign the SBS WAN adapter a static IP. The LAN adapter MUST have a static IP which is currently 192.168.16.40
 and is fine.

Okay I am sorry I dont understnad what i am doing wrong

The router is set to 192.168.100.1 and is set to not give IP's as SBS 2003 will be doing that.

I have two NIC cards in the SBS 2003 mchine which are pluged direct to one HUb then to the router

DHCP is enabled on the SBS 2003

On the Server NIC i Have the following:
192.168.100.60
255.255.255.0
Gatewaye 192.168.100.1
Prefered: 192.168.100.60

on thge secound Nic Card I have the following:
192.168.10.60
Sub: 255.255.255.255
Prfered 192.168.10.60

I get the internet, email, RDP to the machine of outside the local LAN, but none of the client macienes in the lan can get out.

I am sorry if that all sounds strange I am tryimng to follow what you are telling me.

Ethernet adapter Server Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
   Physical Address. . . . . . . . . : 00-0D-60-7A-75-3D
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.100.60
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.100.1
   DNS Servers . . . . . . . . . . . : 192.168.10.60
   NetBIOS over Tcpip. . . . . . . . : Disabled

Ethernet adapter Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet #2
   Physical Address. . . . . . . . . : 00-0D-60-7A-75-3C
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.10.60
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 192.168.10.60
   Primary WINS Server . . . . . . . : 192.168.10.60
   NetBIOS over Tcpip. . . . . . . . : Disabled

Sorry I didn't see your last post when I posted. That looks good. Change the wiring, and assuming you ran the CEICW, it should work.
One note I would change this; " NetBIOS over Tcpip. . . . . . . . : Disabled" but just on the LAN adapter. If not it will affect browsing. In is set under the WINS tab of NIC2, and should be default or enabled.

Windows IP Configuration



   Host Name . . . . . . . . . . . . : cssrvr

   Primary Dns Suffix  . . . . . . . : *******.local

   Node Type . . . . . . . . . . . . : Unknown

   IP Routing Enabled. . . . . . . . : Yes

   WINS Proxy Enabled. . . . . . . . : Yes

   DNS Suffix Search List. . . . . . : *********.local



Ethernet adapter Server Local Area Connection:



   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet

   Physical Address. . . . . . . . . : 00-0D-60-7A-75-3D

   DHCP Enabled. . . . . . . . . . . : No

   IP Address. . . . . . . . . . . . : 192.168.100.60

   Subnet Mask . . . . . . . . . . . : 255.255.255.0

   Default Gateway . . . . . . . . . : 192.168.100.1

   DNS Servers . . . . . . . . . . . : 192.168.10.60

   NetBIOS over Tcpip. . . . . . . . : Disabled



Ethernet adapter Network Connection:



   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet #2

   Physical Address. . . . . . . . . : 00-0D-60-7A-75-3C

   DHCP Enabled. . . . . . . . . . . : No

   IP Address. . . . . . . . . . . . : 192.168.10.60

   Subnet Mask . . . . . . . . . . . : 255.255.255.0

   Default Gateway . . . . . . . . . :

   DNS Servers . . . . . . . . . . . : 192.168.10.60

   Primary WINS Server . . . . . . . : 192.168.10.60

   NetBIOS over Tcpip. . . . . . . . : Disabled

Okay so I am back onluine with all machines and the serve. You are right the cable was wrong. I have now done all the above and have run the CEICW but can't seem to join the domain!!

Oh I also forgot to say thankyou for your help, Alex

Very welcome. I know SBS first time around can seem "odd" even when you may be familiar with other Windows server systems.

The machines joining the domain should be using DHCP.
When you run an ipconfig /all on a workstation are they getting an address through DHCP, and does it appear to be correct? They should receive:
IP = 192.168.10.xxx
Gateway = 192.168.10.60
DNS = 192.168.10.60
WINS = 192.168.10.60

Can the PC ping the server?

Make sure they do not get an ISP or the router, assigned as a DNS server, and if there is more than one network adapter configured on the PC, disable all but the primary wired adapter until you have successfully joined the domain.

Also, are you familiar with the SBS way to join a domain?
-to create a user use the server management | Users | add a user wizard
-to add a computer first use the server management | client computers | set up client computers wizard
-then join the machine to the domain by opening a web browser and going to  http://SBSname/connectcomputer

Hi Rob, I will give that a go., the only other question is that my router is also a wirless on. i am unable to connect to it. I have tried eben by creating the conection myself. When I am connected it will only give local connectivity. Any Ideas?

Hi Rob,  Please see the ipconfig result below. I have done what you said but still cant join the domain nearly though.

I can ping the SBS server by name and number, however when I doo nslookup I get the following:

Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\Administrator>nslookup
*** Can't find server name for address 192.168.10.60: Non-existent domain
*** Default servers are not available
Default Server:  UnKnown
Address:  192.168.10.60




Windows IP Configuration



        Host Name . . . . . . . . . . . . : lap-alex

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Hybrid

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

        DNS Suffix Search List. . . . . . : ComputerServices.local



Ethernet adapter Local Area Connection 4:



        Connection-specific DNS Suffix  . : ComputerServices.local

        Description . . . . . . . . . . . : Broadcom NetLink (TM) Gigabit Ethernet

        Physical Address. . . . . . . . . : 00-1B-24-8F-CD-EB

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.10.11

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.10.60

        DHCP Server . . . . . . . . . . . : 192.168.10.60

        DNS Servers . . . . . . . . . . . : 192.168.10.60

        Primary WINS Server . . . . . . . : 192.168.10.60

        Lease Obtained. . . . . . . . . . : 18 January 2009 22:20:33

        Lease Expires . . . . . . . . . . : 26 January 2009 22:20:33

A wireless router is a problem.
SBS can be configured with 1 or 2 network adapters. If you choose the 2 network adapter scenario, there is a public protected side, and a private LAN side. The router is on the public side and SBS blocks anything from connecting to the SBS, except open ports that you might enable such as 443 and 4125 for remote web workplace. It would not be secure to open the ports necessary for file sharing and domain joining.

If you want wireless users to access the server, there are 3 options:
1) add another router, and move the wireless router to the LAN/private side. The wireless router gets configured as a wireless access point, connected to the switch rather than a router. It would look like this:

internet=>modem=>router=>SBS=>switch=>client PC's
                                                             \\
                                                              \\=> Wireless router=> wireless clients

2) you can set it up so that wireless clients can only connect using a VPN. This is secure and common in some companies, but presents some issues
3) Probably your best bet is option 3, and the only choice if your wireless router is a combination unit, i.e. modem and router. Change the server to be a single NIC configuration. Only do this if there is a router/firewall between the SBS and the Internet. This is an acceptable option, and outlined in the link I provided earlier. As a matter of fact this is the only configuration that works with SBS2008.
Do you have SBS premium with ISA server installed? If so you will loose the ISA features with a single NIC. If no ISA present I would recommend going to 1 NIC. It is actually the more common configuration.
To do so:
-log back into the router and disable the DHCP service for clients, if not already done.
-Also on the router change its IP to be on the same subnet as the LAN of the SBS; i.e back to 192.168.16.40
-In network connections right click on the WAN NIC (the one connected to the router) and choose disable.
-On the LAN NIC Change the default gateway to 192.168.16.40 (DO NOT change the LAN NIC's IP)
-re-run the Configure E-mail and Internet Connection Wizard.
-either reboot the server or from a command line (DOS window) run:
   ipconfig /flushdns
   nbtstat -R  (note capital 'R')
-change the cabling to be:
internet=>modem=>router=>switch/hub=>SBS and PC's
-reboot the PC's and try again.

Missed your last post again, I was typing :-)
NSlookup only works if there is a reverse lookup entry (PTR record) in DNS. There should be but it is possible it is not there.
Let me know what you think about my last comments. If you are going to switch to 1 NIC, we won't worry about this now, but if you want to continue with 2, I can advise on some troubleshooting tips.

Okay Rob,

I will just put an wireless access point into the local LAN. I want keep the systems as it was designed, the only thing is that I cant join the domain, I have tried both using the wizard and connecting via http://sbsname/connectcomputer I follow the on screen instruction but at the end it says error contact the administrator. I have also tried this by manually connection and joining but that also troughs an error.

It is pretty well guaranteed a DNS issue.
The one thing I did jut notice reviewing the IPconfigs is the domain suffix is missing from the PC:
>> Host Name . . . . . . . . . . . . : lap-alex
>> Primary Dns Suffix  . . . . . . . :
It should be Primary Dns Suffix  . . . . . . . : ComputerServices.local
or what ever the domain is. This is set by the DHCP server and should be automatic after running the CEICW, but you can manually add under scope options in the DHCP management console under option #006. Then reboot the pc to update.
Also I assume lap-alex is a laptop? If so it will not join the domain if 2 network connectable devices are enabled, such as a wired and wireless NIC. Disable the wireless until joined to the domain. Afterward it will work fine.

Though this relies on DNS, I would also on the SBS 192.168.10.60 NIC go to the WINS tab and enable NetBIOS over TCP/IP for additional name resolution capabilities.

In addition, due to all the changes, go the the DNS management console on the SBS and under forward lookup zones for your domain in the right had window check if there are any incorect Host records pointing to old, wrong IP's. If so delete them. Then do the same for The reverse lookup zones for 192.168.10.x

Okay will check the above now, the below is from my laptop:

Windows IP Configuration



        Host Name . . . . . . . . . . . . : lap-alex

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Hybrid

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

        DNS Suffix Search List. . . . . . : ComputerServices.local



Ethernet adapter Local Area Connection 4:



        Connection-specific DNS Suffix  . : ComputerServices.local

        Description . . . . . . . . . . . : Broadcom NetLink (TM) Gigabit Ethernet

        Physical Address. . . . . . . . . : 00-1B-24-8F-CD-EB

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.10.11

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.10.60

        DHCP Server . . . . . . . . . . . : 192.168.10.60

        DNS Servers . . . . . . . . . . . : 192.168.10.60

        Primary WINS Server . . . . . . . : 192.168.10.60

        Lease Obtained. . . . . . . . . . : 19 January 2009 19:37:08

        Lease Expires . . . . . . . . . . : 27 January 2009 19:37:08

Actually I should have realized there was only one NIC enabled by the IPConfig you posted earlier, but it is missing the "primary DNS suffix"

Okay so its missing the primary, how so I reslove the issue?  I have checked the DNS to the best of my ability and it all seems fine!! Again thansk for your help

Do you offer telephone support? LOl

I can ping my sbs by number, by name CSSRVR and by cssrvr.computerservices.co.uk

>>"Okay so its missing the primary, how so I reslove the issue?"
Go to administrative tools | DHCP | click on + next to the server name | click on + next to scope | right click on scope options and choose configure options | under general go to #015 (sorry I said #006 earlier) and click on it | under string value enter ComputerServices.local assuming that is your correct internal domain name | make sure the #015 box is checked ! and click OK. Then reboot the PC.

While in the DHCP management console it would be a good idea to verify all options are set:
#003 Router (actually the gateway) = 192.168.10.60
#006 DNS Servers = 192.168.10.60
#015 DNS Domain Name = ComputerServices.local
#044 WINS/NBNS servers = 192.168.10.60
#046 WINS/NBT Node Type = 0x8

can you ping ComputerServices.local ?

Okay I have checked all the above abd it matches to what you have! I have rebooted but get the same configuration IP setting on LAP_ALEX

I have restarted the SBS server but it get stuck on preparing network configuration!! I can get a connection on the laptopn to the internet.

I can't ping computerservices.local i can only do that is i use the following cssrvr.computerservices.local

This is what I go to this time when trying to join the domain
error.bmp

>>"I have restarted the SBS server but it get stuck on preparing network configuration!! "
Were you ever able to log on.

Just as a confirmation, do you have a "server management " icon on your start menu, and did you run the wizard in the management console "connect to the Internet"

I was able to log on after a very long time waiting, yes I did run the wizzard. I think it might be best to rebuild as I have chnage so many thing since I set the cable to the wrong configuration and the touble shooting the issue. What do you think?

If it is a new build and you can redo I would recommend it. SBS is different than other server systems and needs to be set up in specific ways. The wizards and defaults all do this for you, so whenever possible use the defaults, and you must use the wizards. I would recommend first reading Introduction to Windows Small Business Server for Enterprise IT Pros:
http://www.microsoft.com/downloads/details.aspx?FamilyID=71211053-ccd6-4f2b-bbd9-5e7b97c232ec&DisplayLang=en
It helps to explain some of the SBS specific features and requirements.
It is agreed by most SBS IT pros here, you should build your first SBS 3 times so that you get used to the steps and learn to properly configure it.
I suspect DNS has become somewhat corrupted by all the changes, and a fresh install will assure that is all cleaned up.

Thanks so much for trying to help. I will accept the answer as the cable issue as that was the amiin cause. Again thansk for all yoru help, I will have a read through your documnet suggestion, i have sat the exam but inthe real world it does not help when you make a few silly mistakes./

I suspect the initial problem of the external and internal on the same subnet combined with the cables is all that was wrong, but it kind of "snowballed" from there with all the changes. One of my first instructors warned me years ago with server 2000; "if DNS isn't perfect in a Windows domain, it ain't gon'a work" :-)

Good luck with it, and thanks Alex.

ps- if you should need a hand post a new question and send an e-mail to the address in my profile (click on RobWill) with the link.
Cheers !
--Rob

Thanks Rob,
I am going to be doing  a little thinking, reading and then try again, the first time it worked fine with a single network connection with your help. It was great but now I have got a server instead of a simple desktop testing rig, its a little diffrent with two NIC cards and raid. It has given me a much better undertanding of the SBS2003 concept along with networking issue resolutions and given me a goal to learn more about networking concepts.

The networking is the fun part, at least that is what I like. Keep in mind 1 NIC is fine and SBS 2008 only allows 1 NIC, though 2 NICs gives you added control with 2003.

I want to do it with to as this is what its about. I am fuinding this fun and want to learn more. I want to be able to sell the concept of SBS and its advantages to SME. Alex

I agree, but I guess the point is you cannot sell SBS with 2 NICs as it is not available with 2008 and you cannot buy 2003 anymore unless someone has some old stock.

Thnaks for the info, I will bear that in mind.

Alex
I hope this finds you well, thanks for all your help the other day. I just wanted to let you know I am up and running after a rebuild. That seems to do the trick along with sorting all the infrastructure cable out. It is running like a dream. All I have to do is tweak it NOW, I have opened another question and you advice would be most welcomed. Please see below link, I hope to hear from you. Alex
https://www.experts-exchange.com/questions/24080734/Security-Policy.html

Hi Alex. Sorry I was away for a couple of days, but it looks as if you have received lots of help.
--Rob