ROUTERS

A

Ace Fekay [MCT]

Patrick Whittle said:
With a router on our network, do we really need Windows Server 2003 to be
setup with the router service? What service does it provide, other than
address ordering? Also, will the main / real router on the network
interface in any way?

http://www.cisco.com/en/US/products/hw/routers/ps341/prod_view_selector.html

Windows RRAS provides numerous functions, such as routing and VPN use.

However, routers are better suited to route traffic between subnets. No, it
is advised to use a router instead of Windows for routing purposes. A router
is much less expensive and provides a specific function, where you will be
paying a larger amount of money for Windows and the machine it's running on.

Besides, we highly suggest and recommend to never multihome a domain
controller (make it a router). If you do, numerous problems will ensue with
AD that require registry alterations to support routing functions and Active
Directory on the same machine.

Ace
 
A

Ace Fekay [MCT]

Not sure what you mean. Did you get a new ISP or did you simply change the
internal IP address of your edge router (Dlink)?

Did you create a whole new subnet that you want to connect to your current
network? Or do you want to create a DMZ?

The link you provided shows that your Dlink is set to use the ISP's 24.x.x.x
as its own gateway. Are you saying you have an additional subnet created
internally that you want to be able to access the internet? If so, you will
need to get another router for that subnet, provide two IPs, one on the
current network, and one for the other subnet. One the new router, you would
specify the existing Dlink as its gateway. Then in your Dlink you would
provide that other subnet ID and then tell it to use the new router's IP
address of the interface plugged in your current subnet.

Check this out to see what I mean.
Static Route Example
http://www.fekay.com/supportblogs/StaticRoutingExample.jpg

If that's not what you mean, can you provide a Visio or some other visual
representation to better understand your intentions?

Ace
 
P

Patrick Whittle

I created a whole new sub-new so that I can put specific hosts in it, and
make things more hierarchical. I already have a DMZ!

The reason that Dlink is set to use the ISP's 24.x.x.x as its own gateway,
is because internally we have different hosts -- a laptop, people visiting
with Blackberry etc., and some of them need static IPs When I am in Toronto
(or anywhere for that matter) I would like to see and use
traditional/familiar 10.14.198.50 (lower #'s but still class C) type
addresses. ;)

I now have an additional subnet, internally, that I want to be able to
access from the internet.

Edge router???
 
A

Ace Fekay [MCT]

Patrick Whittle said:
I created a whole new sub-new so that I can put specific hosts in it, and
make things more hierarchical. I already have a DMZ!

The reason that Dlink is set to use the ISP's 24.x.x.x as its own gateway,
is because internally we have different hosts -- a laptop, people visiting
with Blackberry etc., and some of them need static IPs When I am in
Toronto (or anywhere for that matter) I would like to see and use
traditional/familiar 10.14.198.50 (lower #'s but still class C) type
addresses. ;)

I now have an additional subnet, internally, that I want to be able to
access from the internet.

Edge router???


The Dlink is your edge. The gateway to the ISP (24.x.x.x) on the Dlink is
what it needs to access the internet, and you can't change that or you will
lose access. It's not about different hosts, because keep in mind, the dlink
is a specialized device that offers routing from one interface to the other
and is just like a server, in a way, that is it has an operating system,
etc.

If you want to setup a subnet somewhere else in another city, they would
need internet access there. You can setup an internal separate server with
VPN services (not the DC) so you can VPN in.

Ace
 
P

Patrick Whittle

Only one computer is in the DMZ. I just tried plugging in my old router,
hoping to find its own subnet. Shouldn't routers look after cycling, to
find a second router? I'm thinking that since my main router has
192.168.0.1 address,
the second router should grab 192.168.0.2
 
A

Ace Fekay [MCT]

Patrick Whittle said:
Only one computer is in the DMZ. I just tried plugging in my old router,
hoping to find its own subnet. Shouldn't routers look after cycling, to
find a second router? I'm thinking that since my main router has
192.168.0.1 address,
the second router should grab 192.168.0.2


Routers are like a piece of paper. They can't find anything, nor
self-configure themselves. You have to have a plan, and understanding of
routing, static routes, etc. As I've shown you in my static routing diagram,
the routers' interfaces have been configured according to a a design I layed
out first, then implemented. They do not autoconfigure.

Also, if your DMZ is being separated from your internal network by NAT, AD
will not work.

Ace
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top