Is this a simple question with a simple answer?

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Hello, I want to say thank you in advance to anyone who can put me in the
right direction with this. I am in a bit of a mess and pretty much lost :(

Situation: Currently at the office I work for I am running a win 2000 sever
with 20+ clients behind a linksys firewall (cable connection). I have DHCP,
DNS & AD all running at default settings and I am manually entering the
router numbers to the stations that are allowed internet access. Everything
is running fine ie: printers, shares, etc.

Problem: My office has decided it wants to run it's own Email server, so in
preparation I had them purchsase a new server which will also run Win 2000
server and Win Exchange 2000, as well as picking up a new Symantec firewall
appliance. I was under the impression that all I would need to do, is run
DHCP from the firewall to 1nic on the email server, then run DHCP on the file
server to the 2nd nic on the email server, and run RRAS on the email server
to connect the intranet to the internet. And that's where I'm lost. Can
anyone suggest a clear & simple resource or outline the basics as to how to
set up this kind of a network? I am about to give up :(

Thank you in advance again to any help,
Victor
 
I don't any reasons you need two DHCPs. Also, if you have a firewall, you
don't need RRAS either. what you may need to do is open the ports 25 and
110.

--
For more and other information, go to http://www.ChicagoTech.net

Don't send e-mail or reply to me except you need consulting services.
Posting on MS newsgroup will benefit all readers and you may get more help.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
http://www.ChicagoTech.net
Networking Solutions, http://www.chicagotech.net/networksolutions.htm
VPN Solutions, http://www.chicagotech.net/vpnsolutions.htm
VPN Process and Error Analysis, http://www.chicagotech.net/VPN process.htm
VPN Troubleshooting, http://www.chicagotech.net/vpn.htm
This posting is provided "AS IS" with no warranties.
 
Hi Robert,

Thank you for your reply :) I guess what I'm asking is what is the best way
to set this network up so that the intranet can connect to the internet with
minimal admin work. I have seen a few diagrams where a firewall/router is
connected to an email server at 1 nic, and then a second nic on the email
server is connected to an intranet. Can you recommend any books/sites that
discuss this type of setup? Anymore feedback/ideas would be greatly
appreciated. Thank you

Victor
 
It is not a simple question, and I doubt that there is a simple answer.
You are talking about a fairly tricky network configuration, with plenty of
scope for foulups. Multiple gateways and multiple firewalls are not easy,
and your proposed scheme looks very dicey to me!
 
Hi Bill,

I was afraid someone was going to say that :( Can you recommend any books or
suggestions on how to lay it out? Just something general would be greatly
appreciated. Thank you for your reply :)

Victor
 
That is a pretty big ask. You are looking at a host of different
problems here. It is not simply a routing problem. You need to consider how
you will handle security. Will you put everything on the private LAN behind
the firewall and use forwarding from the firewall, or do you want to put the
Exchange server on a DMZ ? There is also the problem of how you handle DNS.
And how you integrate (or not) with Active Directory.

Is certainly can't be handled in a newsgroup reply and I doubt you will
find it all discussed in one paper or one chapter of a book.
 
like you we are behind a firewall.

We run exchange 2000 thru a pix 515 firewall
and allow port 25 and pop3 and port 80 (http).

our first public ip allows our lan clients to get internet.

we got an additional public IP so that clients could get
web based email from outside, which we set up
in exchange 2000 and IIS.

the clients get internet access, and email, and web mail.
email comes in from the outside and lands on our email server..
our email goes out to wherever.

the email server is inside on our lan, its a member server,
behind the firewall.

I dont know if that helps you, or was the question,
but thats how we set it up.

no rras necessary.

James W. Long
 
James W. Long said:
like you we are behind a firewall.

We run exchange 2000 thru a pix 515 firewall
and allow port 25 and pop3 and port 80 (http).

our first public ip allows our lan clients to get internet.

we got an additional public IP so that clients could get
web based email from outside, which we set up
in exchange 2000 and IIS.

the clients get internet access, and email, and web mail.
email comes in from the outside and lands on our email server..
our email goes out to wherever.

the email server is inside on our lan, its a member server,
behind the firewall.

I dont know if that helps you, or was the question,
but thats how we set it up.

no rras necessary.

James W. Long
Click to expand...
Thanks for the response James, I have a better idea of what to set up now
and how. Thanks to you and to everyone else who responded.
 
Back
Top