Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: I inherrited a network

I inherrited a network 8 years 5 months ago #26712

  • sose
  • sose's Avatar
  • Offline
  • Honored Member
  • Posts: 813
  • Thank you received: 4
  • Karma: 3
I inherrited a network


---
/
MODEM----DLINKSWITCH
LINUXBOX(DHCP SERVER)
|
|
|
|
WINDOWS 2003SERVER
(2 LAN CARDS,) ______WIRELESS AP1
|
|
|
WIRELESS AP2


THIS IS THE BEST PICTURE I CAN GIVE
MOST OF THE CLIENTS ON THIS CONNECT VIA WIRELESS THROUGH AP1 AND AP2.WINDOWS 2003 RUNS A KERIO MAIL SOFTWARE- INTERNALMAIL APPLICATION .I VIEWED THE IPs ON THE 2 LAN CARDS, 1 LAN CARD HAS A PUBLIC ADDRESS AND THE OTHER A PRIVATE IP ADDRESS. THE LAN CARD FEEDING AP1 WITH ACCESS IS HAVING A PRIVATE IP ADDRESS, AND AS THEY EXPLAIN THE OTHER PUBLIC ADDRESS IS TO ENABLE ACCESSIBILTY OF THE 2003 APPLICATION SERVER FROM THE INTERNET

MY PROBLEMS

WHY IS THE DLINK ROUTER BEFORE THE LINUX BOX, I THOUGHT THE LINUX BOX IS SUPPOSE TO COME FIRST WITH 2 LAN CARD
AS A FIREWALL?
IS THE LINUX BOX ACTUALLY THE DHCP SERVER HOW DO I CONFIRM THIS ?
HOW DO I RESTART A LINUX BOX ONLINE FROM OUTSIDE THE NETWORK?

ANY OBSERVATIONS AS REGARD TO BEST PRACTICE

NOTE : ALL CLIENT USE WINDOWS XP
sose
Network Engineer
analysethis.co/index.php/forum/index
The administrator has disabled public write access.

Re: I inherrited a network 8 years 5 months ago #26713

  • sose
  • sose's Avatar
  • Offline
  • Honored Member
  • Posts: 813
  • Thank you received: 4
  • Karma: 3
SORRY THE PICTURE IS A BIT SCATTERED. BUT THE 2003 SERVER IS CABLED TO TH E DLINK SWITCH ,AND THE LINUX BOX IS ALSO TAPPING FROM THE SWITCH. THEN THE AP1 IS TAPPING FROM LAN1 FROM 2003 SERVER AND AP2 FROM AP1
sose
Network Engineer
analysethis.co/index.php/forum/index
The administrator has disabled public write access.

Re: I inherrited a network 8 years 5 months ago #26718

  • S0lo
  • S0lo's Avatar
  • Offline
  • Moderator
  • Posts: 1577
  • Thank you received: 7
  • Karma: 3
WHY IS THE DLINK ROUTER BEFORE THE LINUX BOX, I THOUGHT THE LINUX BOX IS SUPPOSE TO COME FIRST WITH 2 LAN CARD
AS A FIREWALL?

sose, Not sure were is the "DLINK ROUTER". In the diagram you mentioned "DLINK SWITCH". Is your "MODEM" the "DLINK ROUTER". Any way, The linux box can be put in the middle as you said as firewall with 2 NICs. But thats not a must, a firewall could be built-in the adsl MODEM it self, as it is usually a router it self. And it's probably configured to do NAT, which can be considered as a simple firewall.
IS THE LINUX BOX ACTUALLY THE DHCP SERVER HOW DO I CONFIRM THIS ?

A quick way, You could disconnect the linux box temporarily, then connect a PC/laptop to wireless through AP1 (configured to automatically get an IP). And see if it gets an IP. If it doesn't then you are sure the LINUX is the DHCP. If it does get an IP, then the DHCP could be the MODEM/ROUTER or it could be the Win2003 itself.
HOW DO I RESTART A LINUX BOX ONLINE FROM OUTSIDE THE NETWORK?

I have absolutely no idea.
Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
The administrator has disabled public write access.

Re: I inherrited a network 8 years 5 months ago #26719

  • KiLLaBeE
  • KiLLaBeE's Avatar
  • Offline
  • Expert Member
  • Posts: 466
  • Karma: 0
IS THE LINUX BOX ACTUALLY THE DHCP SERVER HOW DO I CONFIRM THIS ?

A quick way, You could disconnect the linux box temporarily, then connect a PC/laptop to wireless through AP1 (configured to automatically get an IP). And see if it gets an IP. If it doesn't then you are sure the LINUX is the DHCP. If it does get an IP, then the DHCP could be the MODEM/ROUTER or it could be the Win2003 itself.

Another way: SSH into the Linux box (remember to allow the appropriate ports [i.e: 22] through the firewall) and type ps -e grep dhcp. I believe this will tell you if DHCP processes (daemons) are running on the server
HOW DO I RESTART A LINUX BOX ONLINE FROM OUTSIDE THE NETWORK?

I have absolutely no idea.
SSH into the Linux box and and type sudo shutdown -r now. That will restart the Linux box

Hope this helps...and I welcome corrections of my suggestions from any members
The administrator has disabled public write access.

Re: I inherrited a network 8 years 5 months ago #26728

  • sose
  • sose's Avatar
  • Offline
  • Honored Member
  • Posts: 813
  • Thank you received: 4
  • Karma: 3
sorry Solo, I wanted to say a dlink switch.
i am not comfortable with a switch in between the vsat modem and the linux box and at the same time other computers tapping from the dlink switch. A firewall protects what is in front of it from what is behind it .So I think it should come first
sose
Network Engineer
analysethis.co/index.php/forum/index
The administrator has disabled public write access.

Re: I inherrited a network 8 years 5 months ago #26737

  • S0lo
  • S0lo's Avatar
  • Offline
  • Moderator
  • Posts: 1577
  • Thank you received: 7
  • Karma: 3
sorry Solo, I wanted to say a dlink switch.
i am not comfortable with a switch in between the vsat modem and the linux box and at the same time other computers tapping from the dlink switch. A firewall protects what is in front of it from what is behind it .So I think it should come first

Sure, you can do that. Just make sure your linux box is well equipped for the missiion. Preferably with Gig NICs on CAT6 cables. CPU specs might be a concern if your clients (on AP1 or AP2) are more than say 40 or 50 PCs since it's bandwidth demand can keep your CPU busy on peek times.
Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
The administrator has disabled public write access.
Time to create page: 0.086 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup