Setup office network

zolf
zolf used Ask the Experts™
on
Hello there,

i want to setup an office network for around 30 local users and 20 remote users. i have a HP ML370 G6 server.I have 4 static IP address. the server will have sql server 2005 db,my in-house ERP software.the users use my erp software via TS. i want to know what hardware i will need and how should i setup to allow users to go on internet and use TS to connect to the server to use the erp software. after a few months the company will add its web server too.but for now it is not present.please help me setup the network.

cheers
zolf
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Commented:
Your question is a good one and I can answer you in 3 words, memory memory memory.
For added security, you can change the RDP port to something unused (different topic). If you're comfortable with your firewall securiy, then ignore this step.
Does your software require admin/power user rights to run? Hopefuly not. You will need to purchase TS licenses for your remote users. Just set it up for simple Terminal Server. Set a default/mandetory profile (diff. topic), installed your apps and off you go.

Author

Commented:

thanks for your comments.
i want to start from ground. i mean how to i build my network infrastructure.i mean router,switches...how to i go about designing.keep yourself in my place and how will you design/build you LAN netowork

Author

Commented:

please help
Exploring SharePoint 2016

Explore SharePoint 2016, the web-based, collaborative platform that integrates with Microsoft Office to provide intranets, secure document management, and collaboration so you can develop your online and offline capabilities.

Author

Commented:

please help
Hire a consultant.
Rick HobbsRETIRED
Top Expert 2006

Commented:
Are you going to be doing Exchange on the server?
IT Project Leader
Commented:
RPPreacher is right, a consultant is needed here.

What kind of Internet connection is on the premises? You will need some kind of router. I recommend a router/firewall device like a Fortiguard or Astaro Security Gateway. A Windows Server with ISA installed can perform this function too.The router/firewall will plug into a switch, in your case a big switch. I would go for a switch with more ports than users, in case your company decides to expand. For more about switches, routers and the like, buy a book for the Cisco CCNA certification and read it. The first half of that book will cover all of this information.

Are you planning on laying the cables, cutting holes in the walls, and assembling the patch panel?

I don't know if your server will have Windows Server installed on it, or even what type of desktops you have (Windows/Mac?).
nociSoftware Engineer
Distinguished Expert 2018

Commented:
Really this needs more attention than you can get here.
It also depends on where you want to setup stuff. (physical building structure etc.).

Where are the workers,, can it be run over one switch or do you need several, is there a Airco Equipment Room ,...... too many factors.

The best advise has allready been given, hire someone locally to help you out.
Paul SolovyovskySenior IT Advisor
Top Expert 2008
Commented:
I am not sure you should install a terminal server on the same server you are running sql, etc..

You may want to install VMware ESXi or another hypervisor and run multiple servers so you can devide by role.  The G6 will support a good bit of memory and you shouldn't run into any issues on the CPU.

A good firewall is also in order with a DMZ so you could put the webservers there if you want security, VMware will support this as well as long as you have enough physical network ports on the server.

You should also plan to have a good backup/DR strategy as any environment needs to be backed up.

Author

Commented:

Are you going to be doing Exchange on the server?
no

Author

Commented:

>>What kind of Internet connection is on the premises?
ADSL with 1MB speed

Author

Commented:

>>Are you planning on laying the cables, cutting holes in the walls, and assembling the patch panel?
no the office has those in place...at present the network setup is very basic.i mean all the computers connect to the internet directly.
>>I don't know if your server will have Windows Server installed on it, or even what type of desktops you have (Windows/Mac?).
the server will have win server 2003 R2 and all the desktop are winXP

Author

Commented:

>>I am not sure you should install a terminal server on the same server you are running sql, etc..
what are the disadv. of it
Paul SolovyovskySenior IT Advisor
Top Expert 2008

Commented:
The disatvatage is resources. SQL will take up all the memory on system even though it doesn't use it (MS SQL at least) which leaves less resources for clients connecting via RDP. With many users connecting to the same machine you have to baseline connectivity.

On the other hand if you segment your applications you can troulbeshoot and grow accordingly.  A user getting a virus onto your system because they RDP'd and decided to use the internet on the system may cause issues with your DB.  On the other hand if they just mess up their profile on a terminal server, not as much of an issue.
I agree that the most effective solution is to hire someone to help you.  But here are some things to think about.

1. Depending on your needs to the outside 1 MB ADSL may not be enough, but only you can evaluate that.
2. Inside the network purchase a cisco or juniper switch. between the switch and outside probably need a firewall of some kind.
3. If you really want to do it right, although the cost is probably prohibitive, also add web filter (like iPrism from St. Bernard) and perhaps an IDS/IPS device from IBM ISS.
4. Servers: SQL should be on it's own box. Period.  You will need a second box for Domain Controller; to do it right you would need 2. They don't have to be beefy.  If you're hosting something that will be accessed from the outside, web server also a separate box. If it's just for internal stuff then you could probably combine your ERP software and the web server. If you are allowing access from the outside for something that will be accessed frequently by your clients, this may also indicate that you need a faster connection.
5. Hire someone to come in and really look over your specifics. That's obviously not something we can do from here.
At your stated level, I'm with paulsolov; unles that SQL database is trivial, you need a second server for the TS clients.  The number of users will also force you to move to Active Directory so you will need to have expertise in setting up the DNS server and AD.
I'd also note that a 1MB ADSL may prove to worfully inadequate for 20 RDP sessions. Your outbound bandwidth may not be enough.
The Terminal Server should have two NIC's; one for LAN traffic and one with a dedicated cable to one of the 4 ports on the broadband router.  This will remove the TS traffic from the local LAN and make it more secure.
On the server(s), I always specifically remove all permissions excepting for the Administrator account to IExplore.exe (right-click on the file itself) which prevents users from cruising in TS; a highly dangerous activity, these days.
Beyond those suggestions, what you are asking for is beyond the scope of a single question.  You either need months of study to manage the AD and DNS properly or need to hire a local MCSE; but, check their references!  I see so many utterly fouled up AD's, its not funny.  Proper planning and documentation are the keys.

Author

Commented:

thanks a lot for your comments.
Jason WatkinsIT Project Leader

Commented:
Glad to help, thanks!

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial