"backpedal" <(E-Mail Removed)> wrote in message news:(E-Mail Removed)...
>
> I have a Windows 2003 server with RAS configured as a basic router. It
> currently routes IP traffic between 2 subnets. i.e :
>
>
> NEWYORK-DC1-2K8 (SERVER) - 192.168.20.201/24 dg : 192.168.20.200
> |
> RAS NEWYORKNIC - 192.168.20.200
> RAS TOKYO NIC - 192.168.30.200
> |
> TOKYO-DC1-2K8 (SERVER) - 192.168.30.201/24 dg : 192.168.30.200
>
> This works fine and traffic goes cross both subnets. However I want to
> add another NIC into the RAS box so both sites can access the internet
> through a external ADSL modem. The IP address of the ADSL router is
> 10.190.0.3/16.
>
> Can someone advise what changes I need to make to the RAS box in terms
> of routing etc to make both sites gain internet access through the
> 10.190.0.3/16 ADSL modem.
>
> Any advice would be very appreciated.
I would really suggest to not multihome (more than one NIC and/or IP) a domain controller. It causes numerous issues with AD due to the additional DNS records registered into DNS. I would suggest to use a member server or a stand alone server. Otherwise, if you want to use a DC for this role, there are a handful of registry entries and other changes that need to made on the DC in order to allow it to properly function.
As for adding an extra NIC, it will complicate a DC even further. However, there are dedicated routers/firewalls that can handle this function much better than Windows. I normally use a Cisco ASA5505 (formerly PIX 500 series) firewalls. They have a fantastic VPN feature to interconnect or route traffic between the offices and setting the default route so they can access outside traffic to your ADSL. These devices are only around USD $400 - $USD $500 each including a 24/7 gold 3 year support contract. I do not work for Cisco. This is just a suggestion. There are other vendors that make and do the same thing just as reliable, such as NetScreen, SonicWall, etc. I've been using the Cisco products for years and find them easy to work with, and Cisco's support is great, they will even set the whole thing up for you as part of the contract remotely.
If you want to continue using the DCs in such a fashion, I can post the changes that need to be made to a DC so you can see what is involved, if you like.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSA Messaging, MCT
Microsoft Certified Trainer
(E-Mail Removed)
For urgent issues, you may want to contact Microsoft PSS directly. Please
check
http://support.microsoft.com for regional support phone numbers.
"Efficiency is doing things right; effectiveness is doing the right things." - Peter F. Drucker
http://twitter.com/acefekay
Similar Threads
Linear Mode
