Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

1 server 2 nics - DSL LAN/WAN

Status
Not open for further replies.

audiopimp

MIS
Jun 9, 2002
175
CA
Hi. I'll try and be breif but no promises. I'm hoping someone here will be able to guide me in the right direction or reference of some kind.
The Given :- 1 Office - 1 Server (winNT SP6a) - 4 manager PC stations (Win 982ndE) - 5 Workstations PC (win 98 2ndE)- 1 16 port 10/100 switch - 1 DSL line Modem - : the server is to be used by all PC's, its running a Dialer and writes and reads into a master DB (Most simply put).
The Problem :- I only want the manger stations to have access to the Internet WAN, the other 5 workstations I do not want them to be able to get onto the Internet, only our small LAN while all this protectiing my server from the WAN.
Some Ideas - A buddy of mine told me i can easily do this by installing 2 NICS on my server. One to handle the WAN and the other the LAN. But after this I am lost. Is there a software I need to do this? Am I going to have to install DHCP on the 4 manager stations and static IP's on the 5 other workstations?
I know im almost there but can someone please help me out here? Any good web sites I can check out if its too long to explain.
PS> I did manage to do pretty much what I wanted with the help of a router. The Linksys Router software allows me to block certain IP's ect. Please note: I'd like to do it without the router as described above. Is it possible from the information I gave you'all?
Regards, Mark - Steve
 
The Linksys is actually a good bet. From your post it sounds like that you have already set the router up to connect to the internet correctly. Assuming that I would do the following.

Instead of using dynamic for manangers and static for others, I would use static for the managers and disable DHCP. I would disable DHCP on the router and setup a range of 4 static IP addresses for the 4 manager stations. That way only those 4 IP addresses would have access to the internet. Make the range something like 192.168.20.1-4. Of course you would have to configure the TCP/IP settings in each of the manager stations using but that would make it pretty hard for others to connect (unless they knew the IP address range, DNS servers & such.

Also, there may be a setting in the router that allows only certain MAC addresses to be handed out addresses. This would be the absolute best method. You could enter into the table the specific MAC addresses of each of the managers NIC cards and it would hand out IP addresses only to those stations using DHCP. This would eliminate the use of static IP. I am not sure however if the Linksys lets you do that.

Or you can do it like your friend says using the two ethernet cards. You would have to use a program like Microsoft Proxy which is available for free with the Microsoft Internet Information Services. I think the latest is 5.0 and you can get it on the microsoft website.

In short, you first choice in my opinion would be to go the MAC address route. Second the static route. I do not see a benifit (someone correct me if I am wrong) in doing the two NICS over the router. In any case if you are concerned with protecting your network I would suggest disabling all ports by default and only enable the specific ones which are needed (80, 21, etc...).

Hope this helps and that I didn't mispell to much!
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top