I understand that SBS 2003 is intended to work in a certain way, as either a firewall or behind one, but we are a small company, and I have to manage this myself, and am a little confused on how to set this up.
We have been using SBS 2003 for a couple of years behind a firewall appliance. We've had the firewall product since before the SBS, and like how well it works. The SBS server only had one LAN interface, and therefore had its firewall turned off.
Now, I want to add a wireless router to the whole thing, but wanted to place it between the firewall and the SBS, and activate the SBS firewall. This seemed like a good idea since 1) it would require wireless clients to use VPN to access the network behind SBS, and 2) keep my wireless clients behind a firewall, giving some protection.
Is this a supported scenario for SBS 2003? I installed a second NIC, and was hoping to be able to get this to work. However, I couldn't, and now that I think about it, I had both NICs on the same subnet (192.168.1.x)
If I were to keep the LAN side NIC to that subnet, and then change the "ISP" side to 192.168.0.x, would this work? How would I have to configure the SBS to allow traffic from behind the 192.168.1.x subnet to get through to the Internet? Previously, we had them go through the firewall, but it seems that with the new setup, we'd have to have all the client computers go through the SBS's 192.168.1.x address. Am I doing this right?
Thanks,
victorl
We have been using SBS 2003 for a couple of years behind a firewall appliance. We've had the firewall product since before the SBS, and like how well it works. The SBS server only had one LAN interface, and therefore had its firewall turned off.
Now, I want to add a wireless router to the whole thing, but wanted to place it between the firewall and the SBS, and activate the SBS firewall. This seemed like a good idea since 1) it would require wireless clients to use VPN to access the network behind SBS, and 2) keep my wireless clients behind a firewall, giving some protection.
Is this a supported scenario for SBS 2003? I installed a second NIC, and was hoping to be able to get this to work. However, I couldn't, and now that I think about it, I had both NICs on the same subnet (192.168.1.x)
If I were to keep the LAN side NIC to that subnet, and then change the "ISP" side to 192.168.0.x, would this work? How would I have to configure the SBS to allow traffic from behind the 192.168.1.x subnet to get through to the Internet? Previously, we had them go through the firewall, but it seems that with the new setup, we'd have to have all the client computers go through the SBS's 192.168.1.x address. Am I doing this right?
Thanks,
victorl