howdy y'all - I am harry brelsford, author of Windows Small
Business Server 2003 Best PRactices and the CEO of SMB Nation
(www.smbnation.com).
I am posting up a few pages per day of my book until SBS 2008
ships!
Today we work further into the Connect to the Internet option
on the SBS 2003 To Do List.
cheers....harrybbbb
PS - did I forget to mention we have a three-day conference in
Seattle this October featuring SBS 2008? :)
###
Connect to the Internet
Continuing our way down the list, we actually have to
“pause” on the list in the case of SPRINGERS, because
we have a second network adapter card installed on our server
machine that needs to be configured. You’ll recall that two
network adapter cards were present back when you installed SBS
2003 in Chapter 3. To configure the network adapter card, before
continuing with the Connect to the Internet link, please perform
the following tasks.
1 &nbs
p; Log on
as Administrator on SPRINGERS1 with the password Husky9999! and
click the Start button.
2 &nbs
p; Click
Control Panel, Network Connections and select Network Connection.
This is the second network adapter card because the primary local
network adapter card is called Server Local Area Connection
by default. A Network Connection box will appear informing
you the card is being enabled.
3 &nbs
p; When
notified by another Network Connection dialog box that the
network adapter card can be configured by the E-mail and Internet
Connection Wizard, click Cancel to not launch such a wizard, and
allow the network adapter card to be configured manually.
BEST PRACTICE: So exactly what gives in Step #3
immediately above? Here’s the deal. If you click Yes in the
prior step, the E-mail and Internet Connection Wizard starts as
you would expect. Then, when you get to the fourth screen of said
wizard, the darn second network adapter card has been
automatically enabled to receive its IP address dynamically.
Truth be told by me to you, but it’s unlikely in most cases
that you’d want to acquire your IP address dynamically on
the wild-side NIC (aka second network adapter card). Rather, you
are far more likely to input a static IP address that your
Internet Service Provider (ISP) gave to you for use on your SBS
2003 network. And that’s the scoop, mates!
4.
This is where the
strange get weird. You’ve clicked Cancel, which killed the
process underway from the steps above. Please repeat Step #2
again to select the Network Connection from the Network
Visit www.smbnation.com for
additional SMB and SBS book, newsletter and conference resources.
Connections
option in Control Panel. The Network Connection Status dialog box
will appear.
1 &nbs
p; Click
Properties. Network Connection Properties will appear.
2 &nbs
p; Select
Internet Protocol (TCP/IP) and click Properties.
3 &nbs
p; Complete
the General tab of the Internet Protocol (TCP/IP) Properties
sheet to reflect the following information (as shown in Figure
4-4). IP address is 207.202.238.215, Subnet Mask address is
255.255.255.0 and the Default Gateway address is
207.202.238.1. Make the Preferred DNS server 209.20.130.35 and
make the Alternate DNS server 209.20.130.33. Click OK.
Figure 4-4
Correctly configuring the second network adapter card
for the SPRINGERS SBS network.
Note on page
4-21 I will explain how the Preferred DNS server field is reset
to
192.168.16.2
by the EICW overriding your settings in Step #7 above.
8.
Click Close twice (to
return to your desktop).
Visit www.microsoft.com/technet for the
latest updates for any Microsoft product.
It’s now time to configure the
e-mail and Internet connectivity capabilities in SBS 2003.
Perform the following:
1 &nbs
p; Click
Connect to the Internet from the To Do List in Server Management.
2 &nbs
p; The
Welcome to the Configure E-mail and Internet Connection Wizard
page appears. Take a moment to read about the information that is
required to complete this wizard by clicking on the Required
Information for Connecting to the Internet link (then close the
help screen that appears). Click Next.
3 &nbs
p; On the
Connection Type screen, select Broadband and click Next as seen
in Figure 4-5.
Figure 4-5
Select the
Broadband choice on the Connection Type screen.
1 &nbs
p; Select A
direct broadband connection beneath My server uses: on the
Broadband Connection page. Click Next. See Figure 4-6.
2 &nbs
p; On the
Network Connection page that appears, confirm that the ISP
network connection reflects Network Connection with the IP
address
of 207.202.238.215. Confirm the Local
area network connection reflects the IP address of
192.168.16.2. This is shown in Figure 4-7. Click Next.
Figure 4-6
You will
select a direct broadband connection for SPRINGERS.
Notes:
Visit www.microsoft.com/technet for the
latest updates for any Microsoft product.
Figure 4-7
Take an extra moment to confirm your
page looks like this figure. This is where you define the local
area network connection (the “inside”) and the
outside Internet network connection (the “wild
side”).
6.
The Direct Broadband Connection page appears. Confirm your screen
looks similar to Figure 4-8 and click Next.
Notes:
Figure 4-8
The bottom
three fields are editable on the Direct Broadband Connection
page.
BEST PRACTICE: So even though my
advanced SBS 2003 book won’t be out until mid-2004, a few
gurus are reading this book and might ask this question after
reviewing the Direct Broadband Connection page in the EICW:
“Why do you accept the ISP DNS IP address settings and not
point it back to 192.168.16.2 to utilize the DNS service in SBS
2003 as a well-known TechNet article states?” The same
question was asked by an angry student whom we’ll call Jeff
in Dallas, Texas, at a late-September 2003 SBS 2003 hands-on lab.
Turns out Jeff thought he was being duped by the EICW because he
wanted to point the wild-side NCI cards back to the DNS of
192.168.16.2. Fair enough. But Jeff, you might be
surprised to know that the EICW does this internal referral
thingy after running, because it’s the darn EICW that
configures the DNS in SBS for forwarding out to the ISP’s
DNS servers.
Visit www.microsoft.com/technet for the
latest updates for any Microsoft product.
1 &nbs
p; Select
Enable firewall on the Firewall page and Click Next.
2 &nbs
p; On the
Services Configuration page, select E-mail, Virtual Private
Networking (VPN) and Terminal Services, and FTP. This is part of
the SPRINGERS methodology and something you might not do for
every customer site in the real world. Your screen should look
similar to Figure 4-9. Click Next.
BEST
PRACTICE: When you select the VPN-related checkbox, you’ll
receive a notice that the server is not configured for remote
access through VPN. You will further be advised that you’ll
need to run the Remote Access Wizard in order to do this. This
message is normal, helpful, and actually points to the very next
link on the To Do List that you and I will complete for SPRINGERS
in the next section.
Figure 4-9
Selecting
what services will be accessible via the Internet.
The Web
Services Configuration page appears. This is where you’ll
select which Web services are externally accessible. In the case
of SPRINGERS, we’ll select the radio button titled Allow
access to only
the following Web site services from
the Internet and select everything EXCEPT Business Web site
(wwwroot) and click Next. This has effectively selected all of
the checkboxes you see in Figure 4-10.
Figure 4-10
Completing
the Web Services Configuration page.
BEST PRACTICE: Call it a case of Miami madness or
“mean season” malfeasance, but there I was delivering
the SBS 2003 hands-on lab in Miami, Florida in early October 2003
and being blamed by a student that an exercise involving Remote
Web Workplace didn’t work. How could this be? If you look
closely in Figure 4-10, the default settings on the Web Services
Configuration page include the Outlook Web Access and the Remote
Web Workplace screen. What gives here?
The
student didn’t append the URL with /remote. You’ll
learn more in Chapters 8 and 10 on this topic.
Visit www.microsoft.com/technet for the
latest updates for any Microsoft product.
And now for the rest of the story.
Microsoft and I agree that you do not want to expose your root
page to the Internet - EVER - unless you are going to host a Web
site. Because the SPRINGERS methodology does not include Web site
hosting, you’ve made the correct selections in Figure 4-10.
10.
Approve the dialog box that
advises you that the site will be accessible via the
Internet. To do this, click Yes.
