How to Configure Small Business Server for Full Time Internet Access with Two Network Adapters (306802)


The information in this article applies to:

  • Microsoft Small Business Server 2000 SP1
  • Microsoft BackOffice Server 2000
This article was previously published under Q306802

SYMPTOMS

This article provides configuration information for Small Business Server 2000 or BackOffice Server 2000 that is configured with Microsoft Exchange 2000 and Internet Security and Acceleration (ISA) Server on a single computer that is also a domain controller (DC). This article applies to configurations where the server has two network adapters, one for the internal LAN, and the other that is connected to a fulltime Internet connection, such as DSL, a cable modem, T1 line, and so on. The information in this article may be useful to help address any of the following issues:
  • Slow startup times during "Configuring Network Connections".
  • Inability to access the Internet.
  • Users are unable to log on to the domain.
  • Exchange server is unable to send and/or receive e-mail messages.
  • Event ID 5775 DNS deregistration errors.

CAUSE

In these installations, the Domain Name System (DNS) server is the pivotal point for Active Directory (AD) and LAN connectivity. DNS is the AD locator in Windows 2000. AD clients (including the server and its services) use DNS to locate domain controllers for administration and logon. You must have a DNS server installed and correctly configured for AD and the associated client software to function correctly.

The Internet Connection Wizard (ICW) is a tool that is designed to help with the configuration of Windows 2000 networking through LAN connections or remote dial-up, Exchange Server 2000 and the ISA Server.

RESOLUTION

For the purpose of these steps, the IP addresses that are used to connect to the Internet are provided here. Note that these values will be provided to you by your ISP or from your firewall/router if you are using these devices.

The following steps are for configuring server internal and external connectivity:
  1. Verify DNS settings for each local area connection:
    1. Click Start, point to Settings, and then click Network and Dial-up Connections.
    2. Right-click Local Area Connection for the internal network, and then click Properties.
    3. Right-click Internet Protocol (TCP/IP), and then click Properties.
    4. The proper configuration in a default SBS installation should look something like this:
      • Use the following IP Address
        IP Address: 192.168.16.2
        Subnet Mask: 255.255.255.0
        Default Gateway: blank
      • Use the following DNS server addresses:
        Preferred DNS server: 192.168.16.2
        Alternate DNS server: blank
      The IP address for the internal network adapter should be used for the preferred DNS server on the internal local area connection.

    5. Follow steps b and c for the external local area connection.
    6. This configuration can use static address information that is provided by an ISP or that may be obtained automatically. The proper configuration that is based on the information provided by your ISP should look something like this:
      • Obtain an IP address automatically OR

      • Use the following IP address
        IP Address: <static address provided by ISP>
        Subnet Mask: <static mask provided by ISP>
        Default Gateway: <static address provided by ISP> AND

      • Use the following DNS server addresses:
        Preferred DNS server: 192.168.16.2
        Alternate DNS server: blank

        Important: Use the IP address from the internal network adapter for the preferred DNS server on the external Local Area Connection. Do not use DNS that is provided by an ISP, and do not select the Obtain DNS server address automatically option.
  2. Set the binding order:
    1. Open Network and Dial-up Connections.
    2. On the Advanced menu, click Advanced Settings.
    3. All the local area connections and remote access connections appear in the top window that is named Connections. Use the arrow keys to move connections to the following order:

      Local Area Connection for internal adapter
      Local Area Connection for external adapter
      (Remote Access connections)
    4. Click OK.
    5. Close the Network and Dial-up Connections.
    6. If you are prompted to do so, restart the server.
  3. Run the Internet Connection Wizard (ICW):
    1. Click Start, click Run, type icw, and then click OK.
    2. Click Next.
    3. Configure the hardware, and then click Configure Full-time Broadband Connection.
    4. Configure networking adapters:

      In the upper window, click the adapter with the 192.168.16.2 address.
      In the lower window, click the adapter with the external IP address to the Internet.
    5. Specify your ISP connection information:

      Default Gateway: (provided by ISP or obtained automatically)
      Primary DNS server address: (provided by ISP)
      Secondary DNS server address (optional): (provided by ISP)

      Note: These values populate the DNS Forwarders boxes, not the DNS in the TCP/IP Advanced properties.
    6. Configure Internet mail settings:

      Exchange Server: Use SMTP for Internet mail.

      POP3: Disable POP3 electronic messaging*.
  4. Configure Internet Domain Name. This should be the registered fully qualified domain name that would be used to send a user an e-mail message. The example assumes that the message would be sent to User@microsoft.com
  5. Configure SMTP Server Address. Unless required by an ISP, click Use domain name system (DNS) for mail delivery.
  6. Receive Exchange Mail. Do not send a signal. Message dequeuing may be enabled if this configuration is necessary for mail retrieval. This should be discussed with your ISP for compatibility.
  7. Enable ISA Server packet filtering, select all filters, and then click OK when you receive the warning.
  8. Click Finish.

STATUS

This behavior is by design.

MORE INFORMATION

To help with client connectivity, you may need to modify the Dynamic Host Configuration Protocol (DHCP) scope for your local network. Here is a recommended configuration for the DHCP scope that will work in a majority of configurations. This example assumes that you are using the default setting that is provided with the SBS installation. Click Start, point to Programs, point to Administrative Tools, and then click DHCP. Expand the tree so that you see the following information:

server.domain.local[192.168.16.2] Scope[192.168.16.0] SBS Scope
Scope Options

You should see the following entries:

Option NameVendorValue
003 RouterStandard192.168.16.2
006 DNS ServersStandard192.168.16.2
044 WINS/NBNS ServersStandard192.168.16.2
046 WINS/NBT Node TypeStandard0x8


If you will be hosting RAS or VPN clients, you must apply the hotfix that is described in the following Microsoft Knowledge Base article:

292822 Name Resolution and Connectivity Issues on Windows 2000 Domain Controller with Routing and Remote Access and DNS Installed

For additional information about how to configure a server with a single network adapter that is connected to a router that provides Internet access, click the following article number to view the article in the Microsoft Knowledge Base:

309633 How to Configure a SBS for Full Time Internet Access with a Single Network Adapter

For additional information about how to configure a server using modem, terminal adapter, or other 'dial up' device to connect to the Internet, click the following article number to view the article in the Microsoft Knowledge Base:

309652 How to Configure SBS for Internet Access by Using Modem or Dial-up Connection

REFERENCES

237675 Setting Up the Domain Name System for Active Directory

260362 How to Configure Active Directory on a Home Network

Modification Type:MajorLast Reviewed:11/21/2003
Keywords:kbnetwork kbprb KB306802
©2003 Microsoft Corporation. All rights reserved.