Network Setup - Internet Connection

[maXimus4444]

Hi everybody,

Help! I've got a network of about 150 clients. This network spans over 2 buildings via T1 line between the 2 campuses. The 2 locations have been sharing the same internet connection. The outside line comes into, lets call it the "east" building. It then supplies the east campus with the internet. The "west" campus accesses the internet through the T1 line, which comes from the east campus. Recently, a new internet connection was installed at the west campus in order to free up bandwidth usage on the T1 line.

Now that we have that out of the way. I am having trouble setting up the west campus so it looks to the new connection for the internet. I'm not sure if I sound like an ***** but any help will be better than where I'm at right now. I appreciate anything I can get.

-maX

 

[DelJo63]

we need the scoop on the physical device topology
(what devices are connected to each other),
where is the ISP--perimeter firewall placed,
how many subnets are there,
and which parts are the same before the change and
which are the new components.

here's a wild guess of the mappings--pls update it

IPS --- perimeter firewall/router --- east facility --- ease subnet router ---
         +
         +-------west facility--west subnet router ----

 

[maXimus4444]

ISP-->Web Proxy Internet Filter-->Router-->Subnet Router-->DC
                                    +                    +
                         T1 Router<-+                    +->workstations   
the west campus is                  + 
below the line                      +             
____________________________________+_____________________
         connection to other campus +
        ----------------------------+
        +
        +->T1 Router-->Router-->DC
                             +
                             +->workstations

I believe this is accurate. I apologize for not being 100% sure. I guess thats the reason why I'm here. Is it smarter to setup a VPN between the two buildings? Any suggestions will help. Thanks so much for your time

There are 3 subnets

 

[maXimus4444]

I've been conversing with a IT Admin. He told me that more subnets are probably needed. Is it possible to point the workstations, at the west campus, to the new connection to look for the internet?

The new connection will connect to the router which is connected to the T1 router of the west campus.

 

[DelJo63]

Finding a website by URL, accessing a newsgroup, or email login are all done
using the DNS; eg

browser or email client -->port(53) where is www.xxx.com --->dns
                     <--------www.xxx.com is at 111.222.333.444
                     --------->connect 111.222.333.444 port(80) GET / http/1.1
                     <-------- webpage content

The IP address for the DNS given to each client system will determine the internal
routing within your LAN and when it hits your perimiter router,
the external routing as well (ie you might have two separate ISP uplinks and separate traffic accordingly).

Setting the DNS address will be perform by a) you manually update ever NIC cfg,
OR b) by the DHCP server in your domain controller.

 

[maXimus4444]

So the DNS cfg needs to be changed in the DHCP of the Domain Controller? Does the DC direct traffic, for all devices, through DHCP using the DNS address?

 

[DelJo63]

All subnet systems get there IP config from your (or the default) DHCP.
You can set their IP gateway address so as to effect the initial routing.
Your DNS will be used to make internal systems have names that can be resolved,
and it will also need to perform a recursive call to some external DNS to
resolve
URLs and other services not local to you.

By controlling the gateway and DNS usage, you effect the routing.

 

[maXimus4444]

I've been trying to understand this for a while and I'm still not getting very far. The Gateway for all subnets needs to be changed to the new gateway in order for the workstations to be routed to the new ISP uplink, correct?

 

[DelJo63]

each router can have its gateway address set to it's upstream neighbor and
thus anyone can be replaced w/o reconfiguring everything. Traffic will then
be router, "if it's not for me, send it upstream".

 

[tipstir]

Have the xyz company you're at fly jobeard first class, put him up at the Hilton suite, with all expenses paid up-front. Sounds like he knows the scope of this project..

 

[maXimus4444]

Thanks for your help. All traffic is routing correctly. I have you to thank!

-maX