LAN/WAN multiple Ip range/nic set up


I am setting up a server that is hosted in a datacentre, the host  machine is running windows server 2008 R2 and I have two VM's installed with Hyper-V. One of the VM's is set up as a Domain Controller and the other is a Citrix server. I currently have two external IP (public) that are assigned to the NIC's of the physical server, and The .210 one I use to RDP onto the Main host and the .211 I have assigned to the virtual machine (citrix). The internal "network" between the DC and Citrix server is on the 10.0.0.x range.

What I need to know is what subnet and default gateways should be assigned to each NIC? The Citrix server needs to be accessible externally via the .211 address hence having this card, i guess this could be changed if required?

Should the default gateways be the same? Do I need to install any special roles? I also need to establish a VPN from the network to an office if that could be included in the response?

Thanks in advance,

Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

Paul MacDonaldConnect With a Mentor Director, Information SystemsCommented:
Certainly both NICs are on the same subnet.  It seems likely both NICs will use the same default gateway.
Setting up the VPN should be as simple as running the new connection wizard in Network Connections.
jakethecatukConnect With a Mentor Commented:
Your ISP should provide you with the subnet mask and default gateway to use with the IP addresses they have given you - ask them to confirm these details.

Even though each server has two NIC's, the primary NIC needs to be the NIC with the external IP address on it and this is the only NIC that will have a default gateway.

I would be very VERY VERY carefull about setting up a VPN from the two servers in the datacentre to your office.  Should the CITRIX server get compromised/hacked then they will have full access to  your local office network as well and they could quite easily trash your whole environment.  

Why do you need a VPN to your office?
benburchIBIAuthor Commented:
The VPN is only a temporary part whilst the office migrates over from local servers to hosted servers.

subnet mask is, so i will put that for both.

Do I omit the DNS records from the second NIC as well?


benburchIBIAuthor Commented:
I swapped the cards around so that the DC had the two networks, then buy using Router and Remote Access was able to set up NAT.
All Courses

From novice to tech pro — start learning today.