Solved Windows 2008 r2 foundation internet setup hel

November 10, 2010 at 10:21:48
Specs: Windows 2008 Server R2 Foundation
hi there. great site and i am hoping to get some clarification if possible on a few things. to start off with our small business is going from 5 computers in a work group (xp prof) and a netgear router w/firewall and avg internet security, where sharing was achieved by by having the same user name on each cpu for authentication.

we have now purchased a dell server with windows server 2008 foundation on it. i have no problem setting up AD and a domain and it will be great having one central location for the print server, file sharing, permissions etc. i just want to make sure what i should do now.

for internet access would it be better to connect 1. from the modem to the server and then the server to the switch and setup ICS or 2. go from the modem to the router and then from the router to each computer? if i did option 2 would this effect my AD and logins?

for whichever option you suggest how should i go about firewall and antivirus protection? would connection through the server with ICS use the servers firewall or do i still need individual firewalls on each workstation?

thank you


See More: Windows 2008 r2 foundation internet setup hel

Report •


#1
November 10, 2010 at 10:44:50
✔ Best Answer
Don't run internet thru the server. Use the router.

Correct dhcp setup:
enable and authorize dhcp from the server
disable dhcp from the router.
in the dhcp server scope set the ip address of the server for dns
gateway is the router ip

Correct MS DNS setup:
Go to the forwarders tab [not to be confused with forward lookup zone]
and input the isp's dns server ips.

Sonicwall [and others] make firewall routers that support subscription services. For example our sonicwalls have antispam and antivirus/malware subscriptions that stops the bad guys at the firewall.

It is still wise to have AV/Antimalware/windows software firewall engaged on the pcs and server.

How to properly post a question: http://tinyurl.com/2fsqqmu


Report •

#2
November 10, 2010 at 12:20:45
so in the setup that you wrote i would just use the router with dhcp off so i would only need one network card on the server.

hookup looking like modem to router (w/ dhcp off but firewall enabled) connected to each workstation and server

then basically my gateway on the server lan card changes from 127.0.0.1 to say 192.168.1.1


Report •

#3
November 10, 2010 at 13:09:50
You must mean dns is 127.0.0.1 not gateway. If it was your gateway it would go nowhere since that is the loopback address. I don't recommend using it to point to dns either.

Your server should have the router ip for gateway
It should list its own ip addresss for dns

dhcp would be turned off everything since you are using static ips

How to properly post a question: http://tinyurl.com/2fsqqmu


Report •

Related Solutions

#4
November 10, 2010 at 13:29:08
yes, i started one thought and mis typed. i will report back with results. thanks for your time


Report •

#5
November 12, 2010 at 10:03:45
seems to be working good
on ipv4 scope options it has
003 router
015 dns domain name
044 wins/nbns service
046 wins/nbt node type
006 dns server
-----------------
on the server status screen it has an alert that "security can be enhanced by rejecting SASL" should i do this?

also, on IPv6 it says i have a dynamically assigned IP? where would that be coming from?


Report •

#6
November 12, 2010 at 10:28:45
ipv6 could be getting a iana ip [in ipv4 that would be the 169.254.x.x ] if autoconfiguration is set to yes.
uncheck ipv6 in tcp/ip properties would be my suggestion.

not finding anything on the SASL error. Lots of questions on the internet but no answers.

How to properly post a question: http://tinyurl.com/2fsqqmu


Report •

#7
December 2, 2010 at 07:54:06
Could you tell me if i am missing something here with active directory. I have a user James. I shared a folder for the user James under the sharing tab and then set under the permissions tab set the permissions. Everything works great and no issues like in peer to peer.

the issue i am having is setting up an active directory group. i want to use the group so for each share i dont have to manually add each user. the issue is i setup a group called sales and add users jill and susan but after sharing a folder to the group 'sales' and setting permissions i cant access the share in the windows explorer. if i add user 'susan' i can access the share fine.

i have the group setup as
sales
group scope Domain local
group type security


Report •

#8
December 2, 2010 at 10:46:07
"and setting permissions "

Exactly what permissions are you setting? If you lost access did jill and sharon also have no access?

recommendation is you only set share level permissions and don't mess with file level permissions.

Answers are only as good as the information you provide.
How to properly post a question:


Report •

#9
December 2, 2010 at 11:30:30
i wanted to set file level permissions so when sharing a folder a user could create a file & read but not delete or modify it.

Report •

#10
December 2, 2010 at 12:00:42
start simple housemr

#9 is far from simple and this isn't done at file level but share level.

Remember any place you read a file a temp version of that file is created? No delete right means the temp files don't get deleted.

Answers are only as good as the information you provide.
How to properly post a question:


Report •

#11
December 6, 2010 at 05:04:35
thank you

Report •

#12
December 16, 2010 at 08:18:10
please delete message


Report •


Ask Question