<info@actdashinteriorsdotcom> wrote in message
news:(E-Mail Removed)...
> hi All,
>
> For the last 3 days I have been going through and trying a few fixes I
> found here before I posted. I am NOT an IT guy, but needed to setup a
> server in our office to run sharepoint, and exchange, and some remote
> desktop things. I have an error saying I must assign a static IP to my
> NIC but which one exactly?
>
> Here's how I set them up based loosely on some things I found here:
>
> I have 2 internal NIC cards installed, with the Internet into one,
> and the other into a switch for the office desktops. I have a static
> IP address 65.12.228.12 through an ATT wireless router. The NIC with
> the inbound Internet connection only has TCP/IP checked and is set to
> obtain an IP address automatically. The other has Client for Microsoft
> Networks, Network Load Balancing, File and Printer Sharing, and TCP/IP
> all checked. It also is set to obtain and ip automatically.
>
> The router is getting me confused a little. I have set the router to
> direcly allow incoming andoutgoing traffic through its utility.
>
> From the router I checked this:
>
> <Allow all applications (DMZplus mode) – Set the selected
> computer in DMZplus mode. All inbound traffic, except traffic which
> has been specifically assigned to another computer using the “Allow
> individual applications” feature, will automatically be directed to
> this computer. The DMZplus-enabled computer is less secure because all
> unassigned firewall ports are opened for that computer.
>
> Current DMZplus computer: act-server2
>
> Note: Once DMZplus mode is selected and you click DONE, the system
> will issue a new IP address to the selected computer. The computer
> must be set to DHCP mode to receive the new IP address from the
> system, and you must reboot the computer. If you are changing DMZplus
> mode from one computer to another computer, you must reboot both
> computers.>
>
>
> This is listed as the connection info:
>
> <Connection Type: Ethernet
> IP Address: 65.12.228.12
> IP Address Allocation: DHCP
> IP Address Type: DMZplus
> Hardware Address: 00:24:01:00:19:86>
>
> Loginng into the routher the address is 192.168.1.254. Isn't this the
> end of the line for these address? Any directiosn where to find the
> info I need or someone to help this is Ultra appreciated.
>
> Thanks
>
> Mike
>
>
>
>
You mentioned in your respons to Meinolf that you tried the SBS group? Which
group were you in? I was trying to find your post, but I didn't have any
luck.
It's partially Windows specific because the inside NIC must have a static
IP. The reason is it's a server running numerous services that require a
static IP. That's the NIC with the Client for Microsoft Networks and other
components enabled.
Second, as Meinolf mentioned, since it is SBS, SBS does things differently
than regular Windows. The CEICW wizard is what sets it all up and if you
don't use the wizard, some things simply just do not work. But you
definitely need the internal NIC to have a static IP.
I'm not sure what that DMZplus mode or even the name brand of the
router/firewall, but to have them tell you that for their firewall to work
that all machines must be set to DHCP is in my book, is unheard of. Active
Directory, the core component in SBS, can't work that way.
I don't know what the firewall manufacturer had in mind with business
networks that use Active Directory and other services that rely on it to set
such a server to DHCP, unless they were thinking this feature is for a
workgroup, such as for non-Active Directory (AD) networks. Worse, my feeling
is the router's DHCP is providing the ISP's DNS addresses to the internal
machines, including the SNS server. SBS must be set to use itself for it's
DNS entry. Otherwise, this will cause numerous problems and is one major
cause of AD failure.
A quick AD rundown, AD relies on DNS. It stores all of AD's resource and
service location records (SRV records) in DNS. This is how SBS "finds" it's
own AD services and servers, as well as how clients "find" the domain when
they logon, authenticate to a printer, etc. If the ISP's DNS addresses are
used, no one can login, and AD can't find itself becaues the ISP's DNS does
not have info about the internal AD domain.
Forgot to mention, Exchange uses and relies on AD. If AD fails, so will
Exchange, and a number of other services that rely on it.
Suggested resolution:
I have a suggestion that will simplify the whole thing. Look into that
router to find out how to configure it for simple firewall/NAT mode
services, where it's outer IP is a 65.x.x.x number, but the inside IP will
be say, 192.168.1.1. if you are not sure, explain to your provider how you
want it setup with the IP address I mentioned, as well as ask them to
disable DMZPlus and the DHCP services on the firewall, because you'll want
to use the DHCP services on the SBS, for a number of reasons, mostly
technical and security.
Then disable the "outer" NIC on the SBS (the one with the 65.x.x.x address),
then conifigure the server with a static config with the following IP
addresses and settings below. Unplug the 'outer' NIC, then plug the router's
internal NIC into the office switch.
Keep in mind, the following are suggested settings based on what you
mentioned about a 192.168.1.254 address, so I thought to stick with that IP
subnet. I would normally make the IP different, such as a 192.168.80.x or
something else other than 192.168.1.x subnet. This is because many home
routers use the 192.168.1.x range and would conflict if you use VPNs for
remote client connectivity.
IP = 192.168.1.5
Mask = 255.255.255.0
Gateway = 192.168.1.1
DNS 1 = 192.168.1.5 (itself)
DNS 2 = (leave empty)
If you are using WINS, set it to 192.168.1.5
Then run the CEICW. The following should help with the CEICW (the wizard) to
properly setup SBS.
The CEICW - Jun 27, 2009 (Good demo with screenshots) ....Clicking on it
actually starts the Configure E-Mail and Internet Connection Wizard; or as
we call it, the CEICW. It used to be called the ...
www.sbs-rocks.com/sbs2k3/sbs2k3-n2.htm
I may have missed some pointers, but this is the jest of it.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Please reply back to the newsgroup or forum for collaboration benefit among
responding engineers, and to help others benefit from your resolution.
Ace Fekay, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA
2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
For urgent issues, please contact Microsoft PSS directly. Please check
http://support.microsoft.com for regional support phone numbers.
Similar Threads
Linear Mode
