Two Networks, One Server

I have one Windows 2003 server with two NICs, one on the internal Lan the the other to run our Public Wireless Network.
On our internal LAN the IP is 192.168.10.#.  That Lan can access the Internet through its own gateway.
I have a virtual server running on the same server using a NIC with an IP of 192.168.103.#.  It also can access the Internet through its own gateway.
Previously, I had the wireless running on a seperate Linux Box and I could NOT access the internal LAN.  Unfortunately, since I moved that to the Windows server I can access the Internal Lan using Remote Desktops etc...
I do have a 5510 ASA device that both networks go through.
How can I block the wireless network from accessing the internal lan?  I do need the internal Lan to be able to access the wireless Lan (Which it now can do).
Thanks in Advance
--Joe

1.  Windows Server with 2 NICS
    A.  NIC 1 with IP of 192.168.10.### VLAN for Internal Network
    B.  NIC 2 with IP of 192.168.103.5 connects to the 192.168.103.0 VLAN (Wireless)
2.  VMWARE's Virtual Server runs on the Windows 2003 Box and Host Linux Proxy Server with an IP of 192.168.103.8
     All wireless nodes use the proxy address of 192.168.103.8 to access the Internet.
Problem:  Laptops connected to the wireless 192.168.103.0 network can Access the 192.168.10.0 network.  I need the Laptops isolated from the 192.168.10.0 network.
Observation:  When the Proxy Server was running on it's own box, wireless nodes could not access the 192.168.10.0 Vlan.
Thanks
--Joe

Similar Messages

  • HT4262 I have two networks one each in two cities.  Both are named the same but require different passwords. I am at my second location but cannot connect to his wifi network. How do I delet one network so I can connect to my second network?

    I have two networks one each in two cities.  Both are named the same but require different passwords. I am at my second location and cannot connect to this wifi network. How do I delet one network so I can connect to my second network?

    Just go to the wireless network preferences and empty out all the stored wireless networks.. then scan and connect to the local wireless.
    Select them and tap the - button below it.
    Once they are emptied out.. it might be good to reboot the computer with the remember networks unchecked.
    Start with a clean slate.

  • Two Companies, One Server

    Hi All,
    I have taken the plunge of upgrading an older SL Server to a new mini server. The company in question now has a new arm and services probably need to be split.
    The plan I had was to have different DNS entries for company A and company B (with web/mail/apps ect). We have just added a new voip network with a large number of phones so I will end up getting a new managed switch. The idea was to initially use the internal NIC to serve both vlans (say vlan10-companyA and vlan20-companyB) with different dhcp/dns so that there was some physical seperation and then set up all the internal workgroups/services to suite. Obviously, the switchports would all be configured to be members of that vlan, so it should all just work.
    I know that the two sharing the same nic isn't the best method in terms of performance, but initially, companyB will be working with pretty small file sizes and network needs. If it all became too much, I could quite happily add a thunderbolt nic down the track.
    Does anybody see this as being a major problem/wrong way to do things? How else would you acheive it, is there a better way? I haven't used lion server before so i'm assuming there might be a bit of fooling around to get the multiple dns/mail/web stuff working. Any pointers? I've seen how to add the vlans under the network dialouge for the selected NIC but don't know anything after that.
    thanks for any help!

    Hi All,
    I have taken the plunge of upgrading an older SL Server to a new mini server. The company in question now has a new arm and services probably need to be split.
    The plan I had was to have different DNS entries for company A and company B (with web/mail/apps ect). We have just added a new voip network with a large number of phones so I will end up getting a new managed switch. The idea was to initially use the internal NIC to serve both vlans (say vlan10-companyA and vlan20-companyB) with different dhcp/dns so that there was some physical seperation and then set up all the internal workgroups/services to suite. Obviously, the switchports would all be configured to be members of that vlan, so it should all just work.
    I know that the two sharing the same nic isn't the best method in terms of performance, but initially, companyB will be working with pretty small file sizes and network needs. If it all became too much, I could quite happily add a thunderbolt nic down the track.
    Does anybody see this as being a major problem/wrong way to do things? How else would you acheive it, is there a better way? I haven't used lion server before so i'm assuming there might be a bit of fooling around to get the multiple dns/mail/web stuff working. Any pointers? I've seen how to add the vlans under the network dialouge for the selected NIC but don't know anything after that.
    thanks for any help!

  • Using n and g together/ two networks

    Would appreciate any advice-- is my configuration right? Which wireless device has the problem?
    From 2004 until Nov 2009 used airport extreme (the dome, mid 2004) and airport express (late 2004) to extend one network; worked fine; seldom had dropouts/ covered entire area 2917 sq. feet plus outside.
    Nothing lasts forever; had to replace the airport express. Coverage was spotty using it with the old dome extreme, so replaced that with a new extreme. (upstairs:extreme/ downstairs express to extend network).
    Long story short: still did not have good coverage downstairs (upstairs was fine) so connected the old dome via ethernet to the express downstairs.
    Airport utility indicates that I have 3 wireless devices (true) and I have two networks--one (g) via the old airport extreme and one (n) via the new airport extreme. I set the express to join the new extreme (n), or maybe I did not adjust anything in configuration when I connected the old dome to the new express.
    Things work some of the time, but too often when downstairs (where the network from the old extreme is stronger) (the one connected to the new express via ethernet) I am supposedly connected, but I am not connected, i.e. can't get email, can't get to web pages.
    Most of the time to get it to work I have to turn the airport on and off a few times and then it's ok.
    So have I configured something that needs changing, or is this really an issue with the new extreme, which is the one connected to the cable modem?

    Until around a month ago had complete coverage in my living space/ up and downstairs, using an old airport extreme (2004) and older express (2004). Seldom had trouble. No drop outs. It was fast enough. Also had an older mac connected to the airport via ethernet.
    Genius bar said the old express is for sure done. Since the older extreme was still ok, bought a new express to have the same set up I used to have, but the coverage was not good.
    Then decided to dump the old extreme and have all new technology (n), so bought a new extreme.
    Yes this is dual band.
    Coverage still was not good downstairs so hooked up the old extreme via ethernet to the new express. (this is all downstairs) (cable modem and new extreme are upstairs).
    This results in two networks, where I assume the old extreme makes it a g network. On the other hand the old airport is a g and is connected to the new express which is n, so could that be the problem?
    Anyway, when this set up works it's great, but more and more it's a problem. I'm supposedly connected to the internet, the light is green, but I am not connected. I turn the airport off and then on and things work again, but not for long.
    Not sure where to go with this. I think my goal is to create a dual-band network with the combined airports, and yes my new airport extreme is a simultaneous dual-band, in that I bought it from the apple store just a couple of weeks ago.
    Any suggestions? I've reset the modem, I've done a lot of tweaks, think it's fixed, but then it keeps on happening.
    I'm one of those using a mac since 1985, have owned lots of macs, and I've never had anything so un-mac-like-- it's maddening. Any suggestions would be greatly appreciated.
    My original goal was to just use the new express and and new extreme and dump the old extreme completely, but coverage was not good downstairs. (before malfunction of original express used both and had complete coverage in my living space/ upstairs, downstairs. This was all old technology/ g network)
    Then tried a new express with the old extreme but that coverage was not good.
    Then bought a new extreme

  • Two networks wep - wpa

    I'll like to stream my music and other stuff wirelessly but I don't need or want to asscess the internet using wep. The question -- is there a system or process to set up two networks one with wep to listen to itunes then one with wpa to access the internet ....
    thank you all
    powerbook g4   Mac OS X (10.4.3)  

    I know I'm not very clear. What I'd like to do if
    use wpa encription. I understand that wep is not as
    strong as wpa. I understand that you can only use
    wep for streaming itunes.
    That is incorrect, using WPA on a wireless network will still allow you to stream AirTunes via a connected Airport Express base station in client mode (or even if using WDS).
    iFelix

  • Two different DB version in one server machine, help please

    Hello, greetings.
    I have two databases in one server.
    One is 10g1 version, currently running. another one I just installed is 10g2 version. They each has it's own home. I mean two versions sit in separate oracle home. They both in window.
    However, through sqlplus, toad etc, I can only access 10g1.
    How can I access both versions through sqlplus and toad? What do I need to set up ?
    Thanks in advance!

    However, through sqlplus, toad etc, I can only
    access 10g1.Show us the connect string that you use in SQSLPlus and in TOAD. Don't forget to include the part that tells the client which database to use ...
    >
    How can I access both versions through sqlplus and
    toad? What do I need to set up ?Each Oracle product has it's own network connection configuration files. These are in ORACLE_HOME/network/admin
    The listener.ora configures the piece that listens on the network. Each database must register to the listener. You only need one listener on the machine and each database should register to that listener. To check, run the command line 'lsnrctl status'
    In your control panel, set the listener for 19gR1 to start manually (and then never start it)
    The tnsnames.ora configures the client. Basically it says 'when yoohoo asks to connect to database blah, that means connect to host boing, talk to the listener on port whatever (usually 1521) and ask for a connection to database service bingo' as in
    blah =
      DESCRIPTION =
        (ADDRESS = (PROTOCOL = TCP)(HOST = boing)(PORT =  9876))
        (CONNECT_DATA =
          (SERVER = DEDICATED)
          (SERVICE_NAME = bingo)
      )Nearly 100% of the time, the two tnsnames.ora files, one in each ORACLE_HOME, do not contain all the information needed. So when you use the sqlplus from one Oracle Home and try to connect to the other database, you are missing critical pieces of information that are found only in the other ORACLE_HOME
    The fix - as others say, is to run netca or netmgr (both available from START menu). Or simply open both tnsnames.ora files and make the match up by adding whatever entries are needed.
    >
    Thanks in advance!

  • Network Policy Server Two-factor authentication OTP

    Hello,
    I don't have much knowledge about the Network Policy Server so before digging into this; I would like to know if it offers two-factor authentication. If so, what are the possibilites? I'm looking for a validation based on a one-time password OTP (hardware/software
    token or sms) and  the Active Directory user/pwd.
    Is there anything builtin in the Network Policy Server offering this?
    Thank you!

    Hi,
    NPS supports smart card.
    Two-factor authentication provides improved security because it requires the user to meet two authentication criteria: a user name/password combination and a token or certificate.
    A typical example of two-factor authentication with a certificate is the use of a smart card.
    To use smart cards for remote access authentication, we may do the following:
    Configure remote access on the remote access server.
    Install a computer certificate on the remote access server computer.
    Configure the Smart card or other certificate (TLS) EAP type in remote access policies.
    Enable smart card authentication on the dial-up or VPN connection on the remote access client.
    For detailed information, please refer to the link below,
    Using smart cards for remote access
    http://technet.microsoft.com/en-us/library/cc783310(v=WS.10).aspx
    Best Regards.
    Steven Lee
    TechNet Community Support

  • Server 2003 with two network cards problems

    We have a win server 2003 with two network cards. From the server we connect using a vpn client from cisco to another server. When we do that we can NOT RDC to our server because it inherits the remote IP from the vpn connection. We installed an additional NIC. We gave an static IP to connect to our local network. How can we or is there a way to tell the vpn client to use one nic card and leave the other so we can RDC to it? thanks

    It is possible to configure server to use on nic for incoming and other for outgoing, but it is not possible when vpn client is running. Also it cannot be specified as to which card to use.

  • One server for two independ customer installations

    Dear all,
    I've one server and want to install two different SBO installations for two different
    companies that are not related between them.
    I'm going to create two SQL instance so DBs are in differente scope, and with license manager I could administrate two different license file..
    Is it possible?
    Regards,
    Giovanni

    Hi Sachin,
    you're right with two different VM you can manage that, but this is similar to have two different server.  My goal is to use only a server (phisical or virtual)...  I think  with 8.8 version we can do it, but I glad if someone has some experience of this scenario..
    Regards,
    Giovanni

  • How to install two instance on one server

    Dear Guru,
    I want to install two instance on one server.
    I have installed IDES server ( win 2k3 64 bit with SQL 2005 ECC 6.0)
    Drive is
    c: 20 GB for os
    d: 5 gb swap
    e: 5 gb  swap
    f: 450 GB database.
    The same server i want to  installed SOLMAN 4.0 with sql 2005.
    Please suggest me how to installed without affcting IDES server.
    Amol

    Hi,
    You only have to consider 2 things :
    1. SAPTRANSHOST entry in hosts file will be the same for both systems
    this mean that both systems will share the same transport directory
    Regards,
    Wojtek
    This is not true.  Your SAPTRANSHOST will remain the same, but you can (and should) specify independent trans directories with the DIR_TRANS and and EPS profile parameters to designate where the instance trans files should be located (i.e. /usr/sap/trans_SID).  I recommend you make this change in the existing host first, and then clear out the trans directory.  Let the 2nd instance install into it and then alter that one too (thereby moving the files to the new /usr/sap/trans_SID2).
    Edited by: David Ingersoll on Jan 31, 2008 3:12 PM

  • Problems starting two LISTENERS in one server for two DB.

    Oracle : 10gr2 10.2.0.3
    Server : Linux RedHat R4U5
    General Configuration:
    two users apexdev1,apexdev2
    two oracle homes apexdev1,apexdev2
    One server. Diferent directory structure for each home.
    apexdev1 user.
    [apexdev1@CO-MIA-APXDBDEV admin]$ echo $ORACLE_HOME
    /u01/apexdev1/oracle/product/10.2.0
    [apexdev1@CO-MIA-APXDBDEV admin]$
    [apexdev1@CO-MIA-APXDBDEV admin]$ echo $TNS_ADMIN
    /u01/apexdev1/oracle/product/10.2.0
    APEXDEV30 =
    (DESCRIPTION_LIST =
    (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST =CO-MIA-APXDBDEV.mastec.com)(PORT = 1522))
    (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC0))
    SID_LIST_APEXDEV30 =
    (SID_LIST =
    (SID_DESC =
    (SID_NAME = apexdev3)
    (ORACLE_HOME = /u01/apexdev1/oracle/product/10.2.0 )
    (PROGRAM = extproc)
    apexdev2 user.
    /u01/apexdev2/oracle/product/10.2.0
    [apexdev2@CO-MIA-APXDBDEV admin]$ echo $ORACLE_HOME
    /u01/apexdev2/oracle/product/10.2.0
    [apexdev2@CO-MIA-APXDBDEV admin]$
    [apexdev2@CO-MIA-APXDBDEV admin]$ echo $TNS_ADMIN
    /u01/apexdev2/oracle/product/10.2.0
    APEXDEV31 =
    (DESCRIPTION_LIST =
    (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST =CO-MIA-APXDBDEV.mastec.com)(PORT = 1521))
    (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC0))
    SID_LIST_APEXDEV31 =
    (SID_LIST =
    (SID_DESC =
    (SID_NAME = PLSExtProc)
    (ORACLE_HOME = /u01/apexdev2/oracle/product/10.2.0)
    (PROGRAM = extproc)
    We start the listener for user1.
    lsnrctl start APEXDEV31
    Listening Endpoints Summary...
    (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=CO-MIA-APXDBDEV.mastec.com)(PORT=1521)))
    (DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=EXTPROC0)))
    Services Summary...
    Service "PLSExtProc" has 1 instance(s).
    Instance "PLSExtProc", status UNKNOWN, has 1 handler(s) for this service...
    The command completed successfully
    When we try to start the second one
    [apexdev1@CO-MIA-APXDBDEV admin]$ lsnrctl start APEXDEV30
    LSNRCTL for Linux: Version 10.2.0.1.0 - Production on 21-AUG-2008 17:17:13
    Copyright (c) 1991, 2005, Oracle. All rights reserved.
    TNS-01106: Listener using listener name APEXDEV31 has already been started
    It is looking to the firts one.
    SQL> ho hostname
    CO-MIA-APXDBDEV.mastec.com
    SQL> show parameters service
    NAME TYPE VALUE
    service_names string apexdev30.mastec.com
    SQL> ho hostname
    CO-MIA-APXDBDEV.mastec.com
    SQL> show parameters service
    NAME TYPE VALUE
    service_names string apexdev.mastec.com
    SQL>
    What I'm missing?
    I don't see why is not working?
    What is not rigth in the configuration files?
    Jose.

    Thank you.
    The solution was.
    SQL>ALTER SYSTEM SET LOCAL_LISTENER='listener_alias'
    SQL>ALTER SYSTEM REGISTER;

  • PLEASE Help on two network cards in server

    Hi all,
    (Sorry my spelling Im danish)
    We have a 10.4.5 server with 2 network cards in it. How does I get the server to route betwin the two networks so that mac's on net 1 (en0) can see mac's and printers on net 2 (en1) and visa versa
    The mac's on net 1 can see and use the server (but not print on net 2) The mac's on net 2 cant see or use the server!
    The mac's on net 1 get backuped by Retospect on the server. Retospect can't see the mac's on net 2
    How does I get this to work?

    "sudo sysctl -w net.inet.ip.forwarding=1"
    That will start forwariding immediately but woun't survive a reboot.
    In Tiger Server Admin NAT setup you can make this permanent by choosing "start Ipforwarding Only".
    (Or by adding a line to /etc/hostconfig:
    IPFORWARDING=-YES-
    Or by adding a new file /etc/sysctl.conf
    with this line in it:
    net.inet.ip.forwarding=1)
    "Devices on each network need to know how to get to the other network, and that's usually done by editing the routing table on each system."
    Not necessary. What's necessary is a static route in each Internet router that use the server IP for each LAN as the gateway/router for the other LAN.
    Example network 1: 192.168.100.0/24
    Internet router 192.168.100.1
    Server IP for that LAN 192.168.100.254
    Static route in Internet router: 192.168.200/24 gw 192.168.100.254
    Example network 2: 192.168.200.0/24
    Internet router 192.168.200.1
    Server IP for that LAN 192.168.200.254
    Static route in Internet router: 192.168.100/24 gw 192.168.200.254
    "In addition it's not common for a printer to have an option to manipulate the route table in this way"
    Correct, but you need to add the correct gw/router and netmask to the printer IP settings for this setup. This is sometimes achievable via Telneting to the printer in question to set it up (older Apple printers).
    For performance reason it could be better using a static route in each machine if the internet router doesn't send out route redirect packets.
    Some DHCP servers should be able to send out a static route to it's clients with the rest of the IP info thus making it easier to provide each machine with a static route.

  • Is it possible to give a choice to user to connect any one server on a network.

    Dear Forum members,
    I have three servers windows 2008 r2 in my network but each server has its own set of users. a user member of one server cant' login to other with the same credentials. 
    Secondly PC at a time is part of one domain. every time I have to change the domain name and then user is able to connect with a particular server.
    regards,
    AYAZ 
    Abu Dhabi

    If you make the 3 servers a member of the domain, they can choose to either log in with a domain user account, or with a local user account. The only thing you need to do is to join the machines to the domain. From then on, both local users and domain users
    can log in.

  • Considerations about installing two Data Services in one Server

    Hello experts,
    Can we install the DEV and PRD Data Services 4.2 in one Server?
    If they can, do we have any potential performance problem or another else to be considered before?
    Thanks & Best Regards,
    Tong Ning

    Hello Venken,
    For example, if the customer has the limitation on the money for buying a another server.
    As far as you know, what is the potential problem regarding to this?
    Or we have to advise the customers to buy another server for PRD Data Service.
    Thanks & Best Regards,
    Tong Ning

  • How to web filtering via two network cards?

    I have Installed Server 2008 and two network cards
    on my pc. One LAN card for clients access and one for internet router. I need to share internet connection to my client computers with
    web filtering. So how to do that? I need to block some sites to client access.

    Hi,
    According to your description, my understanding is that you want to use the WS 2008 to share Internet connection and provide web filtering function for internal clients.
    Internal clients –(NIC1) WS 2008(NIC2) – Internet router – Internet network
    Manually assign IP address, default gateway, DNS server, etc. on NIC2. Manually assign IP address, DNS server, etc. on NIC1.
    Install Network Policy and Access Services – Routing and Remote Access Services. Detailed steps reference:
    Install and Enable the Routing and Remote Access Service
    https://technet.microsoft.com/en-us/library/cc770798(v=ws.10).aspx
    Then open Routing and Remote Access and start configuration. Enable NAT on NIC2 to transfer IP address. Detailed steps reference:
    Enable and Configure NAT
    https://technet.microsoft.com/en-us/library/dd469812.aspx
    Windows Server itself does not support web-based filter, third-party tools with application-layer firewall might be needed to realize this function. Configure WS as a router, it supports IP packet filtering, which specifies which type of traffic is allowed
    into and out of the router. Reference:
    https://technet.microsoft.com/en-us/library/cc732746(v=ws.10).aspx
    Best Regards,
    Eve Wang
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

Maybe you are looking for