When it comes to Internet configuration and NT, I don't seem to be able to find up from down. Their documentation makes less sense the more I read it.

So, I'm going to ask for help from y'all, starting from square one.

I have a NT 4 server network (very simplistic) that we use for file and printer sharing. We have four Win 98 PC's connected using DHCP for internal IP assignment. The network is TCP/IP.

I have a dedicated DSL line with Modem in the house, and have an ethernet connection from it to my hub (currently unplugged). I have 5 static IP #s and IP #s for Gateway, Subnet, and two DNS servers.

What do I need to get the DSL line working so that all machines, including the server, can use the dedicated line. What software and what hardware? How does VPN work with this (I have some clients I can reach via VPN once I get the connection functioning, and I would like to be able to reach into my network when I am on the road as well)?

I would like as secure a network as possible, but would also like to get access via the dedicated line ASAP. Until it is reasonably secure, I'll just unplug the connection when we aren't using it. Over time, I'm willing to put in a box, put linux on it, equip it with two nic cards, and whatever. Linux would be new for me, but I want to start working with it.


Thanks to everyone.

-g
--------------
Why is it that ignorance feels like stupidity?

I wouldn't put the NT server on the internet directly. It's rather difficult to keep up with the MS security patches. I would suggest buying a hardware product like a Linksys, Zywall, etc. Then, the easiest way to get a VPN going would be to use RAS on the NT server, then point PPTP in the router to the server. I just checked and the Linksys and Zywall sites both have instructions on how to do this. You can specify what users have rights for remote access in user manager. I would beef up your password policy though. What are you planning to use the VPN for?

Ryount,

Thank you for your reply. I have installed a Linksys "Wireless Access Point Router" (it has four wired ports also) and have it working on all of my PCs. I can see my server and have access to the internet. It was very easy to install. I even have the wireless working on one of the laptops, so kool.

-g

Hello all,

The Linksys comes with an easy install for ZoneAlarm Pro (of course I have to pay for it) and PC-Cillin (AV, also a purchase thing).

Does anyone know how the ZoneAlarm works with the router? I was reading and it sounds like the ZoneAlarm has to be put on every PC. I though only the router needed it, or at least it ran on a server somewhere.

I'm going to be reading up on the linksys and zonealarm sites, but hope y'all can shed some light also.

-g

Something like this should work for you.





|-->NT Server 192.168.1.2

|-->Win98 192.168.1.3

204.45.3.456 192.168.1.1 |-->Win98 192.168.1.4

(internet)----->NAT/Firewall--->Hub

|-->Win98 192.168.1.5

|-->Win98 192.168.1.6

|-->(((Wireless))) 192.168.1.7

/

/

/

Laptop 192.168.1.8





Should keep you nice and safe.

Don't give every system on your network it's own internet IP. You are betting your data that Microsoft can keep it safe. SP2 for Win2K is going to be around 150MB. How safe do you feel now?



In the case of above, the Linksys is acting as a bridge and does not do any firewalling or DHCP. Your model might. Don't know if you want to use it like one or not. Up to you.

Also note. Turn WEP on your router on NOW!!! The 128bit version. Without it, anyone driving by can get into your network just by turning on their laptop. Just as easy as you did.

Also note, that even with WEP, your network is not safe. WEP can be cracked without much of a problem by anyone within a mile range, maybe more.



YFS