LAN/WAN multiple Ip range/nic set up


I am setting up a server that is hosted in a datacentre, the host  machine is running windows server 2008 R2 and I have two VM's installed with Hyper-V. One of the VM's is set up as a Domain Controller and the other is a Citrix server. I currently have two external IP (public) that are assigned to the NIC's of the physical server, and The .210 one I use to RDP onto the Main host and the .211 I have assigned to the virtual machine (citrix). The internal "network" between the DC and Citrix server is on the 10.0.0.x range.

What I need to know is what subnet and default gateways should be assigned to each NIC? The Citrix server needs to be accessible externally via the .211 address hence having this card, i guess this could be changed if required?

Should the default gateways be the same? Do I need to install any special roles? I also need to establish a VPN from the network to an office if that could be included in the response?

Thanks in advance,

Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Paul MacDonaldDirector, Information SystemsCommented:
Certainly both NICs are on the same subnet.  It seems likely both NICs will use the same default gateway.
Setting up the VPN should be as simple as running the new connection wizard in Network Connections.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Your ISP should provide you with the subnet mask and default gateway to use with the IP addresses they have given you - ask them to confirm these details.

Even though each server has two NIC's, the primary NIC needs to be the NIC with the external IP address on it and this is the only NIC that will have a default gateway.

I would be very VERY VERY carefull about setting up a VPN from the two servers in the datacentre to your office.  Should the CITRIX server get compromised/hacked then they will have full access to  your local office network as well and they could quite easily trash your whole environment.  

Why do you need a VPN to your office?
benburchIBIAuthor Commented:
The VPN is only a temporary part whilst the office migrates over from local servers to hosted servers.

subnet mask is, so i will put that for both.

Do I omit the DNS records from the second NIC as well?


benburchIBIAuthor Commented:
I swapped the cards around so that the DC had the two networks, then buy using Router and Remote Access was able to set up NAT.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Network Architecture

From novice to tech pro — start learning today.