Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Router for SBS 2008

  • 21-07-2011 7:33am
    #1
    aamurray
    Registered Users, Registered Users 2 Posts: 45


    Hi, I recently upgraded from SBS 2003 to SBS 2008 and found that I can now only use one network port on the server. My last config was 2 ports - 1 with the internal network address and 1 with the static IP address allocated by Eircom. The Eircom router was configured to forward all traffic to the server (User configured PC in the config). All worked well.

    Now, with SBS 2008, I can only configure the server with 1 network port and that must be the internal network address (192.168.x.x). So now I need a router that will forward all traffic targeted at the static IP to this internal address.

    I don't want to just buy any router and find it is the same as the Eircom one so I would like if someone could advise on which would be the best one(s).

    Cheers,
    Alan.


Comments

  • #2
    jor el
    Closed Accounts Posts: 16,713 ✭✭✭✭jor el


    Not a Broadband issue. Moved to Windows Forum.


  • #3
    rolion
    Closed Accounts Posts: 3,362 ✭✭✭rolion


    More or less ,same setup applies to your existing hardware router (from Eircom):you put the SBS2008 in the virtual server IP address BUT that means the server will be in a DMZ like setup...all incoming traffic will hit your server !
    With 2003 i bet you had the IAS running on it...

    Why do you need all traffic routed straight to your server !?
    Why not leave the firewall on medium,leave NAT simple & sweet and create firewall ports/virtual servers (for smtp,https and vpn i guess) !??

    Bad ideea to leave your SBS exposed out there,better use a hardware firewall first !


  • #4
    Capt'n Midnight
    Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 94,272 Mod ✭✭✭✭Capt'n Midnight


    rolion wrote: »
    Bad ideea to leave your SBS exposed out there,better use a hardware firewall first !
    +1

    The last version of windows I know about that couldn't route between two NIC's was Windows 95. The IPEnableRouter registry entry allowed you to enable routing all more recent versions (there was even a tick box in NT4 ). With windows 95 the problem was that it blue screened.

    Looks like they are FORCING you to use a router between you and the internet. It's kinda idiot proofing security, you have to setup something.

    The alternative is bind multiple IP's to the one NIC but that means everything on the LAN would be exposed to internet packets which is not a good thing.

    If you can't afford to spend a couple of quid on a router then you could setup a PC as one, IPEnableRouter setting will allow any other version of windows (including 98) to act as a router but having a windows PC directly on the interweb is a car crash waiting to happen, far too many exploits.

    There are many free firewalls out there. Many of the commercial ones are just BSD with a logo. You can probably get something to fit on a bootable USB key. Flashing an old router / access point with Openwrt / ddwrt


  • #5
    aamurray
    Registered Users, Registered Users 2 Posts: 45 aamurray


    Tnx guys for your advice. The requirement is for an RDP connection to a desktop on the Lan. I don't want to use commercial software as I had this working before without any external company or extra costs. All I want to do is get the router to forward the RDP traffic to the server internal IP address - the firewall on the server will look after the problems and security. The Eircom router cannot forward this traffic as it just looks for a PC with the internet IP address on it - so I need to buy a router that can. As I said I don't want to just buy a router and then find that it has the same config as the Eircom one. Any advice on which router to buy? Cheers,
    Alan.


  • #6
    Mr. Fancypants
    Registered Users, Registered Users 2 Posts: 1,894 ✭✭✭Mr. Fancypants


    If there are other pcs they wont be protected by the firewall on the server. You may of had ISA before in SBS 2003 if you had the premium version which was a firewall product. This isnt included in SBS anymore.
    If you dont want to purchase a seperate hardware firewall and are sure that you are safe you could just port forward rdp traffic in the netopia. I would suggest that you look at getting hardware firewall such as a sonicwall tz100/200 or cisco 5505 to put in front of the netopia though.


  • Advertisement
  • #7
    rolion
    Closed Accounts Posts: 3,362 ✭✭✭rolion


    aamurray wrote: »
    Tnx guys for your advice. The requirement is for an RDP connection to a desktop on the Lan. I don't want to use commercial software as I had this working before without any external company or extra costs. All I want to do is get the router to forward the RDP traffic to the server internal IP address - the firewall on the server will look after the problems and security. The Eircom router cannot forward this traffic as it just looks for a PC with the internet IP address on it - so I need to buy a router that can. As I said I don't want to just buy a router and then find that it has the same config as the Eircom one. Any advice on which router to buy? Cheers,
    Alan.

    u can forward RDP 3389 on Netopia...
    but i will be mad to leave RDP wide open to wan !!!


Advertisement