Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

network diagram evaluation


  • Please log in to reply
5 replies to this topic

#1 whoiam55

whoiam55

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:36 AM

Posted 28 January 2010 - 02:06 PM

We have a network of 50+ computers/laptops/networkprinters/wifi adaptors/etc.. some computers have internet access, right now it's a workgroup setup, users get internet directly from the DLS modem, users who got mail accounts get mails directly from the mail server. My job is to setup a domain server so that an ERP can run on it; setup a mail server which can be accessed from outside world and design and setup the network so that most of the security needs can be followed.

What I plan is to Setup a Linux based Firewall/Proxy (I choose Untangle for it as we can't afford a hardware firewall right now) and a Mail server (I prefer Mdaemon as I have previous experience working with it.) For Domain I'm using windows2003/R2/SP2.

Please suggest me the best network configuration I can build to achieve the desired results.
Thanks you for your time for reading this.

BC AdBot (Login to Remove)

 


#2 CaveDweller2

CaveDweller2

  • Members
  • 2,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:06 AM

Posted 28 January 2010 - 02:23 PM

I'm not sure what you are asking for. Are you asking about networking hardware? You sound like you have a good plan.

Hope this helps thumbup.gif

Associate in Applied Science - Network Systems Management - Trident Technical College


#3 whoiam55

whoiam55
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:36 AM

Posted 28 January 2010 - 02:34 PM

thanks for the reply, I would like to know, how do I segment my network. Should I use DMZ? DHCP in local network? Where do I put my wifi network? in DMZ or in local network? or in both as some internal users need to login to domain server and company visitors also need internet access. Our mail server also needs to be accessed from outside, for this I would setup dyndns and port forwarding on my firewall/proxy box or should I setup a VPN server?

#4 CaveDweller2

CaveDweller2

  • Members
  • 2,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:06 AM

Posted 28 January 2010 - 03:30 PM

When it comes to network design I like to use the K.I.S.S. method(Keep It Simple Stupid, no not calling anyone stupid). If you start making it complicated then you will spend your time chasing problems in 15 places rather than 2.

With less than 100 devices there is no need to really break up your network that much. I wouldn't use DMZ if I can avoid it at all costs. Servers will need static IPs but the rest of your network should be handled by DHCP. Your wifi should be a part of your internal network and locked down with security. Do the visitors need access to inside resources? Like printers and such?

For the mail server - VPN would be the sexy way to get it done but why add something that could fail when what you suggested will work and is basically free?

Hope this helps thumbup.gif

Associate in Applied Science - Network Systems Management - Trident Technical College


#5 whoiam55

whoiam55
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:36 AM

Posted 28 January 2010 - 10:44 PM

Is this network setup ok?
Posted Image

#6 CaveDweller2

CaveDweller2

  • Members
  • 2,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:06 AM

Posted 28 January 2010 - 10:52 PM

Yes looks good to me.

Hope this helps thumbup.gif

Associate in Applied Science - Network Systems Management - Trident Technical College





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users