Solved

adding a new scope to allow more users and eliminate ip conflicts

Posted on 2010-11-24
15
489 Views
Last Modified: 2012-05-10
Hi
I setup a new windows 2008 server and created dhcp scope, I have two NIC one with ip 10.60.6.11 and second 10.60.6.12, the scope runs from 10.60.6.94 - 10.60.6.253
I want to add another scope and make sure it will allow users to connect to the internet, do I need to change the ip in NIC 2, example 10.60.7.11 and will the users be able to access the data on the 10.60.6.11 server?? whats the best practice..
lets say I have over 300 users the IPs below 10.60.6.94 is for printers and such...
Thx
0
Comment
Question by:IbrahimKilani
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 8
  • 7
15 Comments
 
LVL 27

Expert Comment

by:KenMcF
ID: 34206726
The best way would be to configure a separate VLAN or setup a router to a different subnet and set the IP helper to point to the DHCP servers IP.

If you are going to setup the server with two NICs, one on each subnet you will need to configure RRAS so the computers can route out to the internet.

Is this server a Domain Controller?



http://technet.microsoft.com/en-us/library/cc754634(WS.10).aspx
0
 

Author Comment

by:IbrahimKilani
ID: 34206761
yes, The server is a domain controller, and we also have a VPN appliance that is the gateway 10.60.6.25, I just created a superscope and want to add a new scope under that, is that safe??
thx
0
 
LVL 27

Expert Comment

by:KenMcF
ID: 34206798
Since it is a Domain Controller I would only use a single NIC. Having multiple NICs in a DC can cause issues with replication becuase of multpile DNS registrations and also problems with the computer browser.  
0
Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

 

Author Comment

by:IbrahimKilani
ID: 34206842
Hi attached is a pic of what i did, will the new scope work??
DHCP.jpg
0
 
LVL 27

Accepted Solution

by:
KenMcF earned 125 total points
ID: 34207030
It may work, but I do not sugest having two NICs or multiple IP address assigned to a Domain Contorller. You will run into issues. The best thing to do here is create a seperate VLAN or routed segment and set the IP-Helper to point to your DHCP server. ANother option would be to change your subnet mask from 255.255.255.0 to 255.255.0.0. But if you do this the mask will need changed on every network device.


http://articles.techrepublic.com.com/5100-10878_11-6131003.html
0
 

Author Comment

by:IbrahimKilani
ID: 34207102
I'M GOING TO WAIT COUPLE DAYS AND SEE IF MY setup works, how do I setup the Vlan , is it part of windows 2008 server?? I cant change subnet for now, too many PLcs rely on this network...
0
 
LVL 27

Expert Comment

by:KenMcF
ID: 34207162
You would need to setup a VLAN on your switches.

The way you have it setup may work, but just be aware or some of the issues you may have with your domain controller.

http://social.technet.microsoft.com/Forums/en/winservergen/thread/e7bdacb7-1cae-4f28-9009-7df301971fca
0
 

Author Comment

by:IbrahimKilani
ID: 34207196
Got it, interesting, what make of switch do you recommend or better you already used,
Thx
0
 

Author Closing Comment

by:IbrahimKilani
ID: 34207204
very good Advices
0
 
LVL 27

Expert Comment

by:KenMcF
ID: 34207231
I have used Cisco and HP switches in the past.

Another option you may have is to put the DHCP service on another server that is not a Domain Contorller.

0
 

Author Comment

by:IbrahimKilani
ID: 34207258
I do have the previous server ,I disabled the DHCP, If i want  I want to re-enable it, what should I set the scope to knowing the previous setup mentioned previously...I do not want to use same scope as when I activate it them both at same time, users got conflict, ip already in use..????
0
 
LVL 27

Expert Comment

by:KenMcF
ID: 34207318
I would migrate the database over so you do not get conflicts, also on the advanced tab of  the server you can set conflict detection so if the IP is in use it will not hand it out.


http://www.petri.co.il/dhcp-server-migration-made-easy-windows-server-2008.htm
0
 

Author Comment

by:IbrahimKilani
ID: 34207426
also on the advanced tab of  the server you can set conflict detection so if the IP is in use it will not hand it out.
do you have a print screen on how to do that??
or step by step??
Thx
0
 
LVL 27

Expert Comment

by:KenMcF
ID: 34207441
0
 

Author Comment

by:IbrahimKilani
ID: 34207469
Will do thx
0

Featured Post

DevOps Toolchain Recommendations

Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you migrate a Terminal Server licenses server inside the 2008 server family, you can takte advantage of the build-in migration tool. If you like to migrate an older 2003 Server (and the installed client CALs) to a 2008 R2 server for example, you …
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question