Somewhat OT: Bypassing SBS during maintenance period

Running SBS 2003 Premium.
=========
I've got the server down over-night so I can get some work done, but
it looks like I won't be done by the time the staff gets to work in a
few hours. I'd like to provide them with internet access so I'd like
to do the following -- BUT would really like a sanity-check before I
proceed:

(1) Unplug server from Router so it's in stand-alone mode.
(2) Configure router as a DHCP server using 192.168.x.x private
network.
(3) Plug into ISP-router via WAN port on my router.
(4) Plug into my L3/L4 switch with a LAN port on my router.
(5) Put a note on everyone's keyboard that LAN access is down, but
internet access is available -- IF(!) they accept the risk of having
no firewall. If not, unplug the LAN cable from their PC. (I think the
L3/L4 switch, the very basic firewall in my router, Windows Defender
and Symantec AV on each PC should hold up for a few hours.)

Will this work? Is it an unacceptable risk on my part?

Mike Webb
Platte River Whooping Crane Maintenance Trust, Inc.
a conservation n on-profit (501(c)(3)) organization

Jim
Tue May 13 04:59:59 PDT 2008

No it will not work. There is no domain controller there to let them
log in. Well maybe it will. Every time my domain computer is plugged
in to the network and the dc is missing I cannot log in. If my
computer is not plugged in to the network I can log in using cached
credentials. But then I am not plugged in to the network so there is
nothing for me to do on the computer anyway. Even after I get plugged
back in to the network my files on the server are missing, my email on
the server is missing. I guess I could play Tetris or Rummy but I do
not play computer games.

On Tue, 13 May 2008 01:56:12 -0700 (PDT), Mike_in_Nebraska
<mike_webb@whoopingcrane.org> wrote:

>Running SBS 2003 Premium.
>=========
>I've got the server down over-night so I can get some work done, but
>it looks like I won't be done by the time the staff gets to work in a
>few hours. I'd like to provide them with internet access so I'd like
>to do the following -- BUT would really like a sanity-check before I
>proceed:
>
>(1) Unplug server from Router so it's in stand-alone mode.
>(2) Configure router as a DHCP server using 192.168.x.x private
>network.
>(3) Plug into ISP-router via WAN port on my router.
>(4) Plug into my L3/L4 switch with a LAN port on my router.
>(5) Put a note on everyone's keyboard that LAN access is down, but
>internet access is available -- IF(!) they accept the risk of having
>no firewall. If not, unplug the LAN cable from their PC. (I think the
>L3/L4 switch, the very basic firewall in my router, Windows Defender
>and Symantec AV on each PC should hold up for a few hours.)
>
>Will this work? Is it an unacceptable risk on my part?
>
>Mike Webb
>Platte River Whooping Crane Maintenance Trust, Inc.
>a conservation n on-profit (501(c)(3)) organization
See what SBS support is working on
http://blogs.technet.com/sbs/default.aspx
Check your SBS with the SBS Best Practices Analyzer
http://blogs.technet.com/sbs/archive/tags/BPA/default.aspx

Mike_in_Nebraska
Tue May 13 05:07:17 PDT 2008

On May 13, 6:59=A0am, Jim Behning SBS MVP
<jimbehn...@doesthisblockpork.mindspring.com> wrote:
> No it will not work. There is no domain controller there to let them
> log in. Well maybe it will. Every time my domain computer is plugged
> in to the network and the dc is missing I cannot log in. If my
> computer is not plugged in to the network I can log in using cached
> credentials. But then I am not plugged in to the network so there is
> nothing for me to do on the computer anyway. Even after I get plugged
> back in to the network my files on the server are missing, my email on
> the server is missing. I guess I could play Tetris or Rummy but I do
> not play computer games.
>
>
> See what SBS support is working onhttp://blogs.technet.com/sbs/default.asp=
x
> Check your SBS with the SBS Best Practices Analyzerhttp://blogs.technet.co=
m/sbs/archive/tags/BPA/default.aspx- Hide quoted text -
>
> - Show quoted text -

You're probably right. Although something else might work .... I've
been tapping on my old laptop all night connected directly to the
router with a manually cofigured NIC on the same subnet and have been
on-line just fine. Mayhaps I can do the same for the staff if I patch
the patch-panel into the router.

Mike

Cris
Tue May 13 06:41:40 PDT 2008

This is a multi-part message in MIME format.

------=_NextPart_000_0312_01C8B4D5.29FBA310
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Unless your machines are working with cached crentials OR
They are going to logon to a local account on the machine, rather than a =
domain account, Jim is correct
They will get a message that no domain controller is available

--=20
Cris Hanna [SBS-MVP]
------------------------------------------
MVPs Do Not Work For Microsoft
-----------------------------------------------------
Please do not contact me directly. Please post only in the newsgroup so =
all can benefit

"Mike_in_Nebraska" <mike_webb@whoopingcrane.org> wrote in message =
news:fa55444e-a702-4c5a-81f6-713a84bfe32f@z24g2000prf.googlegroups.com...=

On May 13, 6:59 am, Jim Behning SBS MVP
<jimbehn...@doesthisblockpork.mindspring.com> wrote:
> No it will not work. There is no domain controller there to let them
> log in. Well maybe it will. Every time my domain computer is plugged
> in to the network and the dc is missing I cannot log in. If my
> computer is not plugged in to the network I can log in using cached
> credentials. But then I am not plugged in to the network so there is
> nothing for me to do on the computer anyway. Even after I get plugged
> back in to the network my files on the server are missing, my email on
> the server is missing. I guess I could play Tetris or Rummy but I do
> not play computer games.
>
>
> See what SBS support is working =
onhttp://blogs.technet.com/sbs/default.aspx
> Check your SBS with the SBS Best Practices =
Analyzerhttp://blogs.technet.com/sbs/archive/tags/BPA/default.aspx- Hide =
quoted text -
>
> - Show quoted text -

You're probably right. Although something else might work .... I've
been tapping on my old laptop all night connected directly to the
router with a manually cofigured NIC on the same subnet and have been
on-line just fine. Mayhaps I can do the same for the staff if I patch
the patch-panel into the router.

Mike
------=_NextPart_000_0312_01C8B4D5.29FBA310
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2900.5512" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Unless your machines are working with =
cached=20
crentials OR</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>They are going to logon to a local =
account on the=20
machine, rather than a domain account, Jim is correct</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>They will get a message that no =
domain=20
controller is available</FONT></DIV>
<DIV><BR>-- <BR>Cris Hanna=20
[SBS-MVP]<BR>------------------------------------------<BR>MVPs Do Not =
Work For=20
Microsoft<BR>-----------------------------------------------------<BR>Ple=
ase do=20
not contact me directly.  Please post only in the newsgroup so all =
can=20
benefit</DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV>"Mike_in_Nebraska" <<A=20
href=3D"mailto:mike_webb@whoopingcrane.org">mike_webb@whoopingcrane.org</=
A>>=20
wrote in message <A=20
href=3D"news:fa55444e-a702-4c5a-81f6-713a84bfe32f@z24g2000prf.googlegroup=
s.com">news:fa55444e-a702-4c5a-81f6-713a84bfe32f@z24g2000prf.googlegroups=
.com</A>...</DIV>On=20
May 13, 6:59 am, Jim Behning SBS MVP<BR><<A=20
href=3D"mailto:jimbehn...@doesthisblockpork.mindspring.com">jimbehn...@do=
esthisblockpork.mindspring.com</A>>=20
wrote:<BR>> No it will not work. There is no domain controller there =
to let=20
them<BR>> log in. Well maybe it will. Every time my domain computer =
is=20
plugged<BR>> in to the network and the dc is missing I cannot log in. =
If=20
my<BR>> computer is not plugged in to the network I can log in using=20
cached<BR>> credentials. But then I am not plugged in to the network =
so there=20
is<BR>> nothing for me to do on the computer anyway. Even after I get =

plugged<BR>> back in to the network my files on the server are =
missing, my=20
email on<BR>> the server is missing. I guess I could play Tetris or =
Rummy but=20
I do<BR>> not play computer games.<BR>><BR>><BR>> See what =
SBS=20
support is working onhttp://blogs.technet.com/sbs/default.aspx<BR>> =
Check=20
your SBS with the SBS Best Practices=20
Analyzerhttp://blogs.technet.com/sbs/archive/tags/BPA/default.aspx- Hide =
quoted=20
text -<BR>><BR>> - Show quoted text -<BR><BR>You're probably =
right. =20
Although something else might work .... I've<BR>been tapping on my old =
laptop=20
all night connected directly to the<BR>router with a manually cofigured =
NIC on=20
the same subnet and have been<BR>on-line just fine.  Mayhaps I can =
do the=20
same for the staff if I patch<BR>the patch-panel into the=20
router.<BR><BR>Mike</BODY></HTML>

------=_NextPart_000_0312_01C8B4D5.29FBA310--

Mike_in_Nebraska
Tue May 13 07:14:01 PDT 2008

On May 13, 8:41=A0am, "Cris Hanna [SBS-MVP]"
<crisnospamha...@cpunospamservices.net> wrote:
> Unless your machines are working with cached crentials OR
> They are going to logon to a local account on the machine, rather than a d=
omain account, Jim is correct
> They will get a message that no domain controller is available
>
> --
> Cris Hanna [SBS-MVP]
> ------------------------------------------
> MVPs Do Not Work For Microsoft
> -----------------------------------------------------
> Please do not contact me directly. =A0Please post only in the newsgroup so=
all can benefit
>
> "Mike_in_Nebraska" <mike_w...@whoopingcrane.org> wrote in messagenews:fa55=
444e-a702-4c5a-81f6-713a84bfe32f@z24g2000prf.googlegroups.com...
>
> On May 13, 6:59 am, Jim Behning SBS MVP
>
>
>
>
>
> <jimbehn...@doesthisblockpork.mindspring.com> wrote:
> > No it will not work. There is no domain controller there to let them
> > log in. Well maybe it will. Every time my domain computer is plugged
> > in to the network and the dc is missing I cannot log in. If my
> > computer is not plugged in to the network I can log in using cached
> > credentials. But then I am not plugged in to the network so there is
> > nothing for me to do on the computer anyway. Even after I get plugged
> > back in to the network my files on the server are missing, my email on
> > the server is missing. I guess I could play Tetris or Rummy but I do
> > not play computer games.
>
> > See what SBS support is working onhttp://blogs.technet.com/sbs/default.a=
spx
> > Check your SBS with the SBS Best Practices Analyzerhttp://blogs.technet.=
com/sbs/archive/tags/BPA/default.aspx-Hide quoted text -
>
> > - Show quoted text -
>
> You're probably right. =A0Although something else might work .... I've
> been tapping on my old laptop all night connected directly to the
> router with a manually cofigured NIC on the same subnet and have been
> on-line just fine. =A0Mayhaps I can do the same for the staff if I patch
> the patch-panel into the router.
>
> Mike- Hide quoted text -
>
> - Show quoted text -

OK, thanks.

Lanwench
Tue May 13 11:17:31 PDT 2008

"Mike_in_Nebraska" <mike_webb@whoopingcrane.org> wrote in message
news:327ac5a3-ff80-431d-ac02-b829764077dc@v26g2000prm.googlegroups.com...
> Running SBS 2003 Premium.
> =========
> I've got the server down over-night so I can get some work done, but
> it looks like I won't be done by the time the staff gets to work in a
> few hours. I'd like to provide them with internet access so I'd like
> to do the following -- BUT would really like a sanity-check before I
> proceed:
>
> (1) Unplug server from Router so it's in stand-alone mode.
> (2) Configure router as a DHCP server using 192.168.x.x private
> network.
> (3) Plug into ISP-router via WAN port on my router.
> (4) Plug into my L3/L4 switch with a LAN port on my router.
> (5) Put a note on everyone's keyboard that LAN access is down, but
> internet access is available -- IF(!) they accept the risk of having
> no firewall. If not, unplug the LAN cable from their PC. (I think the
> L3/L4 switch, the very basic firewall in my router, Windows Defender
> and Symantec AV on each PC should hold up for a few hours.)
>
> Will this work? Is it an unacceptable risk on my part?
>
> Mike Webb
> Platte River Whooping Crane Maintenance Trust, Inc.
> a conservation n on-profit (501(c)(3)) organization

Dude, do your maintenance work on the weekends. I've been following your
threads - you're a masochist!

Mike_in_Nebraska
Tue May 13 11:56:20 PDT 2008

I know, I know, but I have a P/T job during the weekend to make ends
meet. So .. I turbo through the work-week to have time at home with
my wife, do the hubby chores, and go to work at my other job.

(I swear I didn't work this much so often when I was on active duty in
the Marines! :) )

Besides .... this was supposed to be "easy". (Guess I'll never learn.)

Mike

Lanwench
Tue May 13 12:09:49 PDT 2008

Mike_in_Nebraska <mike_webb@whoopingcrane.org> wrote:
> I know, I know, but I have a P/T job during the weekend to make ends
> meet. So .. I turbo through the work-week to have time at home with
> my wife, do the hubby chores, and go to work at my other job.
>
> (I swear I didn't work this much so often when I was on active duty in
> the Marines! :) )
>
> Besides .... this was supposed to be "easy". (Guess I'll never learn.)
>
> Mike

Youch. You have my sympathies. :-)

Jim
Tue May 13 12:43:41 PDT 2008

SBS is easy. Install it, run a few wizards and walk away. Tweaks break
things. I remember back in the day when 10 servers was too much for
one person to manage.(only been doing SBS for 10 years) Now a person
could have 20-30 SBS and still be looking for things to do. If you do
not tweak things which ends up breaking things. :-)

On Tue, 13 May 2008 11:56:20 -0700 (PDT), Mike_in_Nebraska
<mike_webb@whoopingcrane.org> wrote:

>I know, I know, but I have a P/T job during the weekend to make ends
>meet. So .. I turbo through the work-week to have time at home with
>my wife, do the hubby chores, and go to work at my other job.
>
>(I swear I didn't work this much so often when I was on active duty in
>the Marines! :) )
>
>Besides .... this was supposed to be "easy". (Guess I'll never learn.)
>
>Mike
See what SBS support is working on
http://blogs.technet.com/sbs/default.aspx
Check your SBS with the SBS Best Practices Analyzer
http://blogs.technet.com/sbs/archive/tags/BPA/default.aspx

Mike_in_Nebraska
Tue May 13 12:49:51 PDT 2008

I think I'm a believer. A big part of my problem is I read SBS blogs
and this NG every day (and check 'em several times before I head
home). I see "tweaks", and "should-do's" and "oughta-do's" and "hey
isn't this neat", and then I look at my system and become 'convinced'
that my box could/should be better -- security, performance, user-
experience, etc. I don't think I've learned yet to "not stick my foot
further in the water than I can pull it out without losing my
balance." Someday I'll vget it through my thick head ....

Mike

Somewhat OT: Bypassing SBS during maintenance period

Re: Somewhat OT: Bypassing SBS during maintenance period by Jim

Re: Somewhat OT: Bypassing SBS during maintenance period by Mike_in_Nebraska

Re: Somewhat OT: Bypassing SBS during maintenance period by Cris

Re: Somewhat OT: Bypassing SBS during maintenance period by Mike_in_Nebraska

Re: Somewhat OT: Bypassing SBS during maintenance period by Lanwench

Re: Somewhat OT: Bypassing SBS during maintenance period by Mike_in_Nebraska

Re: Somewhat OT: Bypassing SBS during maintenance period by Lanwench

Re: Somewhat OT: Bypassing SBS during maintenance period by Jim

Re: Somewhat OT: Bypassing SBS during maintenance period by Mike_in_Nebraska