Cris
Thu Jul 10 10:09:02 PDT 2008
This is a multi-part message in MIME format.
------=_NextPart_000_00C3_01C8E285.BDC1C6A0
Content-Type: text/plain;
charset="Utf-8"
Content-Transfer-Encoding: quoted-printable
Don't know how old your SBS 2003 setup is or if you were planning to =
move to SBS 2008 in the next year, but if you are, I would encourage you =
to rethink this.
SBS 2008 does not support a 2 nic environment, nor can ISA be installed =
on SBS 2008 (unless you're using a separate server). So at that point =
you'd be looking at an external firewall anyway.
If it's a choice between learning Cbeyond now and for the future OR =
learning ISA now and then still have to learn Cbeyond when SBS 2008 is =
introduced...well hopefully you can see where I'm headed
--=20
Cris Hanna [SBS-MVP]
-------------------------------------------------
Microsoft MVPs
Independent Experts (MVPs do not work for MS)
Real World Answers
---------------------------------------------------------
Please do not contact me directly regarding issues
"RP" <RP@discussions.microsoft.com> wrote in message =
news:A54ACBC7-F83D-4D10-B494-5D01A135C7AE@microsoft.com...
So I guess the answer would be to install another NIC and route all =
internet=20
traffic through there and use ISA 2004. I want to avoid dealing with =
Cbeyond=20
and the configuration of it. So I would then need to have the Cbeyond =
Router=20
plugged directly into the NIC. If I have to have another line run or =
move=20
the server, so be it. It's not going to cost that much to do that. =
Thanks=20
for your input.
Ryan
"Cris Hanna [SBS-MVP]" wrote:
> If you only have one nic in the server, you do not have ISA running.
>=20
> Don't know how this would affect your VOIP system, but you can change =
the internal IP of the SBS server using the Change Server IP wizard in =
the SBS console.
> Change it to whatever will make CBeyond happy and give you control of =
the router.
>=20
> This seems like the simplest and cheapest solution
>=20
> --=20
> Cris Hanna [SBS-MVP]
> -------------------------------------------------
> Microsoft MVPs
> Independent Experts (MVPs do not work for MS)
> Real World Answers
> ---------------------------------------------------------
> Please do not contact me directly regarding issues
>=20
> "RP" <RP@discussions.microsoft.com> wrote in message =
news:AA220C37-FEF3-4C9F-9D2A-76BB2AA5999B@microsoft.com...
> Hi All,
>=20
> Here is my setup. We have Cbeyond here at my office. VOIP and =
Internet all=20
> goes through the Cbeyond Router (Cisco) a single T-1 is used as =
Internet and=20
> VOIP. The Router is then plugged into our hub, then everything is=20
> distributed out to the desktops and server from there. Our server has =
Small=20
> Business Server 2003 R2 Premium Edition with 1 NIC. I beleive it has =
ISA=20
> 2004 but I am not sure. All desktops run XP Pro some SP2 some SP3.
>=20
> Currently the SBS is the DHCP. We use the Cbeyond Router as the =
Firewall=20
> and I do not have the Firewall setup on the SBS (which I would assume =
would=20
> be done through ISA 2004). I am wanting to control and filter =
internet=20
> traffic, however since our network is setup as 192.168.x.x, the =
Cbeyond=20
> Router will not allow me to make changes because it calls this a=20
> "non-standard configuration" and I have to go through Cbeyond Customer =
> Service to make changes, so it is a pain in the rear end. Our =
previous=20
> network and devices were setup as 192.168.x.x, so I am not changing =
it. =20
> Cbeyond wants to use 10.x.x.x format, if you use anything else, they =
won't=20
> let you have control of the router. What I am trying to say is, I =
want to be=20
> able to control access through the Cbeyond Firewall, but I can't so =
now I=20
> want to be able to use the ISA 2004 (I am guessing this is what I =
would use).=20
> A few questions though. Would I have to have 2 NICs to be able to do =
this?=20
> Do I have to have the internet physically running through the server, =
or can=20
> I leave the network how it is setup now and have Cbeyond point all =
internet=20
> traffic to the server's IP address. Would I just point the inbound or =
both=20
> inbound and outbound. I'm just not sure how it would all work out. =
The=20
> server is currently in the President's office to keep people from =
trying to=20
> access it. I have a network switch setup in his office so that his =
computer=20
> and server both use the same ethernet wall plug, so I would not be =
able to=20
> switch the cables around to have the internet run directly through the =
server=20
> unless I move it or have another line put in. Of course the big man =
wants to=20
> do this at minimal cost to the company considering the state of our =
economy. =20
> Sorry to have been so wordy, but I am trying to explain everything. =
Any help=20
> would be appreciated. Thanks in advance!
>=20
> RP
------=_NextPart_000_00C3_01C8E285.BDC1C6A0
Content-Type: text/html;
charset="Utf-8"
Content-Transfer-Encoding: quoted-printable
=EF=BB=BF<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; charset=3Dutf-8">
<META content=3D"MSHTML 6.00.2900.3354" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Don't know how old your SBS 2003 setup =
is or if you=20
were planning to move to SBS 2008 in the next year, but if you are, I =
would=20
encourage you to rethink this.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>SBS 2008 does not support a 2 nic =
environment, nor=20
can ISA be installed on SBS 2008 (unless you're using a separate=20
server). So at that point you'd be looking at an external =
firewall=20
anyway.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>If it's a choice between learning =
Cbeyond now and=20
for the future OR learning ISA now and then still have to learn =
Cbeyond=20
when SBS 2008 is introduced...well hopefully you can see where I'm=20
headed</FONT></DIV>
<DIV><BR>-- <BR>Cris Hanna=20
[SBS-MVP]<BR>-------------------------------------------------<BR>Microso=
ft=20
MVPs<BR> Independent Experts (MVPs do not work for MS)<BR>Real =
World=20
Answers<BR>---------------------------------------------------------<BR>P=
lease=20
do not contact me directly regarding issues<BR></DIV>
<DIV>"RP" <<A=20
href=3D"mailto:RP@discussions.microsoft.com">RP@discussions.microsoft.com=
</A>>=20
wrote in message <A=20
href=3D"news:A54ACBC7-F83D-4D10-B494-5D01A135C7AE@microsoft.com">news:A54=
ACBC7-F83D-4D10-B494-5D01A135C7AE@microsoft.com</A>...</DIV>So=20
I guess the answer would be to install another NIC and route all =
internet=20
<BR>traffic through there and use ISA 2004. I want to avoid =
dealing with=20
Cbeyond <BR>and the configuration of it. So I would then need to have =
the=20
Cbeyond Router <BR>plugged directly into the NIC. If I have to =
have=20
another line run or move <BR>the server, so be it. It's not going =
to cost=20
that much to do that. Thanks <BR>for your =
input.<BR><BR>Ryan<BR><BR>"Cris=20
Hanna [SBS-MVP]" wrote:<BR><BR>> If you only have one nic in the =
server, you=20
do not have ISA running.<BR>> <BR>> Don't know how this would =
affect your=20
VOIP system, but you can change the internal IP of the SBS server using =
the=20
Change Server IP wizard in the SBS console.<BR>> Change it to =
whatever will=20
make CBeyond happy and give you control of the router.<BR>> <BR>> =
This=20
seems like the simplest and cheapest solution<BR>> <BR>> -- =
<BR>> Cris=20
Hanna [SBS-MVP]<BR>>=20
-------------------------------------------------<BR>> Microsoft=20
MVPs<BR>> Independent Experts (MVPs do not work for MS)<BR>> =
Real=20
World Answers<BR>>=20
---------------------------------------------------------<BR>> Please =
do not=20
contact me directly regarding issues<BR>> <BR>> "RP" <<A=20
href=3D"mailto:RP@discussions.microsoft.com">RP@discussions.microsoft.com=
</A>>=20
wrote in message <A=20
href=3D"news:AA220C37-FEF3-4C9F-9D2A-76BB2AA5999B@microsoft.com">news:AA2=
20C37-FEF3-4C9F-9D2A-76BB2AA5999B@microsoft.com</A>...<BR>>=20
Hi All,<BR>> <BR>> Here is my setup. We have Cbeyond here at =
my=20
office. VOIP and Internet all <BR>> goes through the Cbeyond =
Router=20
(Cisco) a single T-1 is used as Internet and <BR>> VOIP. The =
Router is=20
then plugged into our hub, then everything is <BR>> distributed out =
to the=20
desktops and server from there. Our server has Small <BR>> =
Business=20
Server 2003 R2 Premium Edition with 1 NIC. I beleive it has ISA =
<BR>>=20
2004 but I am not sure. All desktops run XP Pro some SP2 some =
SP3.<BR>>=20
<BR>> Currently the SBS is the DHCP. We use the Cbeyond Router =
as the=20
Firewall <BR>> and I do not have the Firewall setup on the SBS (which =
I would=20
assume would <BR>> be done through ISA 2004). I am wanting to =
control=20
and filter internet <BR>> traffic, however since our network is setup =
as=20
192.168.x.x, the Cbeyond <BR>> Router will not allow me to make =
changes=20
because it calls this a <BR>> "non-standard configuration" and I have =
to go=20
through Cbeyond Customer <BR>> Service to make changes, so it is a =
pain in=20
the rear end. Our previous <BR>> network and devices were setup =
as=20
192.168.x.x, so I am not changing it. <BR>> Cbeyond wants to =
use=20
10.x.x.x format, if you use anything else, they won't <BR>> let you =
have=20
control of the router. What I am trying to say is, I want to be =
<BR>>=20
able to control access through the Cbeyond Firewall, but I can't so now =
I=20
<BR>> want to be able to use the ISA 2004 (I am guessing this is what =
I would=20
use). <BR>> A few questions though. Would I have to have =
2 NICs=20
to be able to do this? <BR>> Do I have to have the internet =
physically=20
running through the server, or can <BR>> I leave the network how it =
is setup=20
now and have Cbeyond point all internet <BR>> traffic to the server's =
IP=20
address. Would I just point the inbound or both <BR>> inbound =
and=20
outbound. I'm just not sure how it would all work out. The =
<BR>>=20
server is currently in the President's office to keep people from trying =
to=20
<BR>> access it. I have a network switch setup in his office so =
that=20
his computer <BR>> and server both use the same ethernet wall plug, =
so I=20
would not be able to <BR>> switch the cables around to have the =
internet run=20
directly through the server <BR>> unless I move it or have another =
line put=20
in. Of course the big man wants to <BR>> do this at minimal =
cost to the=20
company considering the state of our economy. <BR>> Sorry to =
have been=20
so wordy, but I am trying to explain everything. Any help <BR>> =
would=20
be appreciated. Thanks in advance!<BR>> <BR>> =
RP</BODY></HTML>
------=_NextPart_000_00C3_01C8E285.BDC1C6A0--