2K and Redhat Router? 1

[shib]

Hi
It all started 3 days ago when I started a online 2k Server basics course and decided to try running a server so I would actually become familiar with the tools and the terminology commonly reffered to in the course.
Im running a 2k server at home with active directory service enabled,as you know this means i have to run the DNS server too.
Windows assigned 10.10.0.1 as ip and 255.0.0.0 subent mask and dns of 127.0.0.1
My other 2 comps use 2k pro to connect.

Heres my question(s)

Ive got a dual cpu linux box with redhat 7.2 which i want to use as a firewall/router.
To keep my DNS server on 2k Domain controller running what do i have to do,as in what ip,gateway,and dns to i assign to the other 2k pro comps and to the server its self.....I also want to connect to the net from all comps using 2k pro and server.

Keeping the 10.10.0.1 ip range and dns 127.0.0.1 doesnt let me connect to Ineternet from any computer unless i change stuff around and enter my isps dns server addresses but that disables my DNS SERVER (I think) and i cant manage no comps on network ( keep getting unable to map network drive)Comp objects are placed under computers container and under a OU I made called resources.I can log onto the domain from every 2k Pro comp but still cant manage the computers even when logged in.

I know this is asking alot but can you tell me the correct config?
I would like to set the ip of my server to:

Win2k Domain controller with ADS and DNS server= IP:192.168.0.2 Sub Mask 255.255.255.0 DNS???
Win2k pro client1= IP:192.168.0.3 DNS???
Win2k pro client2= IP:192.168.0.4 DNS???

IP for first NIC coming from cable modem to Linux Router/Firewall =DHCP enabled cos its dynamic not static ip....DNS & Gateway would be handled by the DHCP

LAN side of Router/Firewall: IP=192.168.0.1
Subnet Mask= 255.255.255.0
DNS? & Gateway?

I assume I would set the gateways for all the WIN2k machines as 192.168.0.1 cos the router is my gateway for the internal Network.
Ive heard you can set the IP of the Servers and clients to anything you want providing the network side of the ip is same....but you need to keep the dns server on the domain controller to 127.0.0.1 and then do something with the DNS forwarder settings but till now Ive not tried cos im not sure how.Under the DNS manager I can see the. Folder and my domain name Folder.

Any chance of help?

Regards Gaz

 

[shib]

Anyone?

 

[DarrenH]

I don't know if you posted this on the Linux Server Forum as well, you might get a better response there.

I'm not sure that I can directly answer all your questions, but I'll tell you what I used to do and you should be able to modify it appropriately. I've since installed a Proxy Server (RedHat 7.3 based) on my network and I let that handle all the web accesses - it doesn't care about the W2K stuff. Squid should run nicely on your Linux box, the RPMS should be on the disk

The firewall/router has two NICs, one is connected to the web, it could have a static IP address or assigned by DHCP by your ISP - it's not that revelant at this stage.

The internal NIC of the Firewall has an address in your internal ip address range. 192.168.0.1, yes?

It also runs a caching DNS server and uses NAT to allow the PCs with non rfc1918 addresses(10.0.0.0, 192.168.0.0, etc)to access the web.

Check out

http://leaf.sourceforge.net

for a good source of Linux firewall distros, particularly Bering. There's a lot of good general IP documentation on this site too. IMHO, if you've got a dual processor machine, then it's way overpowered for just a router, but that's up to you

Alternatives are

http://www.clarkconnect.org

and

http://www.smoothwall.org

Each PC/Server on the network needs the following IP info:

Gateway=ip addr of Linux box
DNS1=ip address of W2K server (for local lookups)
DNS2=ip address of Linux box (uses caching DNS to get real addresses)

alternatively, DNS2 could be the ip address of your ISP's primary DNS if you don't have caching DNS running on the Linux box.

Because the Linux box uses NAT, it doesn't matter what IP addresses you are using internally, so use 192.168.0.0/24 if you like. The only problem occurs when you want to access local machines from the web, eg running a web server on the W2K server. Fortunately, it's easy to set up portforwarding on the Linux box to forward requests to the correct machine.

I hope this helps

 

[shib]

Thankyou Darren...much thanks...Ill post this on the linux forum too.

 

[tom11011]

OK, I've only scanned your post briefly but here is how I would set it up.

Linux is firewall/router/gateway - gateway address is ISP, dns is isp.

windows client boxes gateway address and dns address is win2k server

win2kserver has gateway address of linux box. Dns points to itself, setup "forwarders" in dns to point to ISP dns addresses.

Linux should allow port 53 tcp and udp to pass both ways for dns to work on the win2k server.

Don't switch between the 10.0.0.0 and 192.168.0.0 series ips, you will be placing the machines on different networks.

I would assign NIC one on linux 192.168.1.1 with SNM of 255.255.255.0. NIC 2 on linux is your internet connection address assigned by isp.

192.168.1.2 should go to win2k server and .3 and .4 to client machines. Stay with the same subnet.

Linux will ask you about network and broadcast addresses, just go with the defaults, probably 192.168.1.0 for network and 192.168.1.255 for broadcast.

 

[shib]

Great...now i need to find how or were under the dns manager i put my forwarding dns server address's
theres one folder root (.) and one with my domain name.

 

[tom11011]

When you openup the dns manager, there are two colums. In the left one, right click the name of your dns server and choose properties. Go to the forwarders tab and your there.