for your recmmendation, on what type of equipment should I use in a Small Office probably around 50-100 users.Feature sets that I would want are: VPN - 5 VPN Peers for L2L connectivity and 50 SSL VPN connections, Firewall, Active-Standby Fail-over.
I'm on a limited budget, ASA 5510 with Security Plus License can give me this but its a bit expensive.Is there something else that you guys can recommend. ISR maybe?
My current set-up is: my laptop connects to the coaxial outlet with a cable so I can access the internet. So I can't really bring it somewhere else since the cable is short.
Now, I am planning to buy 2 more computers and a printer. The printer will be shared by all 3 computers. what else I need to buy (modem?? wireless router??) and what type. I also request that you let me know how to set it up. Of course, I will follow the manufacturer's instructions.
I would like to connect my three pcs together so that they can all make use of the printers, scanners, internet etc in my office space. i also need to be able to access this lot from a remote laptop so that i can continue to work from home. i would like to store all my data in one place that was easily accessible from every PC and my laptop.
View 2 Replies View RelatedI was into IBM iSeries all these years (15 years) and just got into Microsoft Programming(.NET) I have done a program in csharp.net which gets input from the users and dump it into a database. 50 users are going to do the data entry with just one database. As I dont have much knowledge on sharing/accessing applications/database in a network environment (PC based).
View 1 Replies View RelatedHow do I create a small office network?
View 1 Replies View RelatedI have been tasked with the technology update of our office and have have MAJOR questions which I hope can be answered here, so here goes;
First a little history, I have an electronics degree and a certificate in computer technology, so computers are not something new to me, however networking IS.I have a VERY LIMITED budget to work with, which I'm sure is not unheard of before, with the following equipment already available:
1 MFP currently on lease connected via network
3 totally junk PCs running 3 different versions of Windows from XP to 7
A DSL internet connection
A wireless router
A wired 8 port switch
What I would like to do is begin with a basic server, 7 clients, shared internet on all machines (including external via login), An MFP, at least 1 NAS for data storage, 1 NAS for backup of all drives.
What are the best network engineering practises for a small/medium sized office?Currently I have set it up like this:The top floor has all the sales people, each desk has a hub underneath which connects all computers at that desk together, and the hum is connected to a switch under the floor. There are about about 8 desks each with about 4 computers, so 8 hubs.They all go into a 10/100 switch, which is then connected to an 1gb switch on the bottom floor via a 1gb port on the top floor switch, via a cat6 cable.We then have internet > modem > router > the 1gb switch. Our main server is also connected to that switch along with all the computers for the ground floor, except these computers have 1gb switches under the desks instead of hubs. The main server is the DHCP, DC, DNS and file server. We have also setup another server which acts as a backup DC and is also a DNS server.Is there anything wrong with this configuration? We have been having problems with the router losing connection to the internet and warnings on the main DNS server.
View 6 Replies View RelatedHow do I go by setting up a small network in my office with 3 computer. Reason is to share files, printers, internet.
View 1 Replies View RelatedHow i can configure my small office of about 5 computers to have LAN Networking?
View 1 Replies View RelatedMy office just moved to a bigger location, and we are having trouble with network connectivity.
Current layout: Modem --- Wired-----> 2wire 5012NV ------wired/wireless----> PCs
The 2wire is at one end of the office, and PCs at the other end experience poor wireless connectivity.I'm thinking of using a spare WRT54G2 in "bridged" mode, to extend the Ethernet, and wireless of the main router.
For wired bridging, I understand that that the WRT54G2 will do, is act as a "port multipler", where 1 port from the 2wire can be multiplied into 4. I also want the wrt54g2's wireless to extend the Ethernet connection (not extend the wireless connection).
I have a cable modem in the basement and ethernet lines to two offices upstairs.I have a 4-port wireless router and a 5-port switch. I have a computer in each office and a NAS in one of the two offices.There is no direct wiring between the offices. I want to have internet access and access to the NAS from both offices. Will the following configuration work without having to go to Static IPs? 1) Modem01-> Router01->Switch01->Computer01; 2) Modem01->Router01->Switch01->NAS01; 3) Modem01->Router01->Computer02. If not, what needs to change?
View 3 Replies View RelatedI have to setup what seems to be a very basic configuration, but it doesn't work. In our lab there is a cluster of switches with a 3550 that does all the routing for vlans. I need to simulate a sort of a small branch office that has one connection to the outside world (the lab network). [code] From the router I can ping any host on vlan 230 and other vlans,I can also ping the pc connected to e0/1.However from the PC I can only ping 192.168.1.1(e0/1) and 172.26.230.150 (e0/0) [code]
View 3 Replies View Relatedi have a cisco router 887 which i am trying to configure. but however, do i really need to use the SDM utility or i can do it through CLI?i need to replace my current router in my small home office.
View 3 Replies View RelatedRight now every computer is connected through a workgroup and some computers are sharing files to everyone and some need a login to share other files. I want to run a main server where all the files are on that computer and have it share all the files to everyone else on the network. I'm not too familiar with Windows workgroup networking and file sharing.I want to have certain files accessible to certain computers and certain files accessible to everyone on the network. I'm under the impression that I have to have the main server with all the business documents. Then create separate accounts on the server and hand them out to each individual computer. After, go to each document and specify who can access what with read/write. Can I share some files to everyone and have certain files limited to other computers at the same time? How would someone access the shared files when you need a login and will this login conflict with files shared to everyone and files shared to certain people. I remember on my small business network I need a login for certain computers because it is shared to only certain people then how would I access the files shared to everyone when I have to login to see the server files to begin with?
View 1 Replies View RelatedXYZ Corporation currently employs eight people but plans to hire 10 more in the next four months. Users will work on multiple projects, and only those users assigned to a project should have access to the project files. You’re instructed to set up the network to make it easy to manage and back up. Would you choose a peer-to-peer network, a server-based network, or a combination of both?
View 1 Replies View RelatedI can't seem to figure out which one I should go for. I'm thinking Kaspersky would have greater security but I'm not familiar with AVG's server level security.I don't need all the bells and whistles such as file encryption or password storage. I'm simply after a really strong AV for the server. Another one is VIPRE although I've heard it can take a while to configure it unlike Kaspersky which is pretty straight forward.
View 1 Replies View RelatedI'm trying to network a small office and have the following devices:
SMCD3G Cable Modem
Belkin Play N600 Router
Digi Mil-H1130 8 Port Ethernet SOHO Hub
Hubbel Cat5 Patch Panel (goes up to 12)
We're replacing our DSL line with a Cable line. Our DSL was a one piece wireless router/modem. When it was installed, it was inside our office, next to the server, and plugged into Wall Jack 1 for all the other computers to connect to. Our server plugged into this modem/router. We didn't have the Belkin Router at the time. The Patch Panel wires went into the Hub behind our office and everything was fine.
The cable modem is now next to the Hub and Patch Panel. I bought the router since we didn't have the wireless feature that the DSL had and everyone I spoke to said I need a router to set up the office. I ran one of the LAN lines from the modem into the Router where it says Modem (WAN). From the Router, I ran the line 1 (LAN) into the Hub. (Does the number matter if nothing is plugged into it in our office?) No computer is able to connect to the internet except my laptop which connects wireless. It works fine.
Another problem. We have a server computer that's Unix based. In order for anyone to connect to the server to access the office software used, the IP address of the router must be 192.9.2.1 or the computer your using won't connect via Multiview 2000 Terminal Emulator. I can't connect to the server because the IP address of the router is still 192.168.2.1. I don't know where I have to go in the router settings to change it. I've tried a few spots and it tells me the IP address is invalid. The settings I had with the DSL modem/router were:
Modem IP address - 192.9.2.1
Subnet Mask - 255.255.255.0
DHCP Start Address - 192.9.2.100
DHCP End Address - 192.9.2.150
It's not like I need to run wires. Everything is set. If something is plugged into a wrong spot, I can switch it.
Additional info:
There are 4 computers in the office and 8 numbered wall jacks.
Server computer - Wall jack 8 (IP address of this machine - 192.9.2.25)
XP Machine 1 - Wall jack 4 (can't connect to server! No internet.)
XP Machine 2 - Wall jack 1 (Is able to connect to the server! No internet.)
Win CE Machine - Wall jack 9 -
I assume. I have a wire that goes through the wall on this machine and it isn't marked. (Rarely used so not sure about server connection)
Wireless Windows7 laptop - connects to the internet fine since it bypasses all these wires. Can't connect to server.
Under the DHCP client list, only 2 computers are listed. The one that has internet is my computer. The other computer listed is wall jack 4 and that has internet now.
my computer - 192.9.2.2
wall jack 4 - 192.9.2.3
The router IP is 192.168.2.1 and the Cable Modem is 10.1.10.11. If I type either number into my web browser it will take me to the router setup page. I don't know where/how to check if it's only one device acting as DHCP. What I want to do is be able to get online with all the computers as well as have access to the software on the server through the office wall jacks. In order to do that I need the router IP address to be 192.9.2.1 and then I'd be able to connect to it.
Right now, one computer is able to connect to the server via hard wire but can't connect to the internet.Another computer is able to connect to the internet via hard wire but can't connect to the server.My laptop can connect wireless to the internet but not the server. In a perferct world, all the computers should be able to connect to both the internet and the server. Right now, it's one or the other with both hard wired machines and I don't know why. Is there a wire not in the hub right? Is a patch panel wire plugged into the wrong port of the hub? I don't know what's supposed to go where. tell me "wire X from the modem goes to Port Z of the router, and Wire Y from the the router goes to number V on the Hub, and that wire goes to number T on the patch panel for the Port number R in the office to work..." I'll try it.
Then I think all I need to do is change the router's IP address to 192.9.2.1 and everyone should be able to connect to the server through the Multiview 2000 Terminal Emulator.When I tried to change the IP address on the router it's telling me it's not valid. Under LAN settings it says 192.168.2.1 - when I try to change it to 192.9.2.1 it tells me LAN IP address is invalid. I clicked on More Info below that in the router page and a pop up gives me info. It says:
The "IP address" is the Internal IP address of the Router. To access the advanced setupinterface, type this IP address into the address bar of your browser. This address can be changed if needed. To Change the IP address, type in the new IP address and click "ApplyChanges". The IP address you choose should be a non-routable IP. Examples of a non-routable IP are:
192.168.y.x (where y is anything between 0 and 255, and x is anything between 1 and 254.)
10.y.y.x (where y is anything between 0 and 255, and x is anything between 1 and 254.)
172.z.y.x (where z is anything from 16 to 31, and y is anything between 0 and 255, and x is anything between 1 and 254.)
I want to connect to the Internet small office where docsis (internet over tv cable) is used as WAN.For similar tasks but other WANs (adsl, dial-up) I used 800 series. But now I can't find anything in this series to solve my issue. There is 815 but it has no wi-fi.
I can use cable modem that my ISP gave to me: this modem acts as bridge so I can use router with FE-based WAN but it is better to have one device instead of two.
I'm setting up a wireless network for a small office with 25 people with approx. 15 on wireless at any time. The office is very long and skinny so I'm looking at a cluster of WAP321's. I'm hoping these will save a ton of money versus buying a controller and more expensive access points.
How do these work for roaming? I tried a search but I've found descriptions of them not roaming at all and descriptions of them roaming but you have to do some kind of pre-authorization right up to they roam with no user interaction, they just roam.
I need the users to be able to roam around the office with no interruption. I don't want to install these and have to rip them out later and put in new ones and a controller. How to find out if the WAP321's will work for roaming.
i'm trying to setup a local DNS server to manage small office local-only domain names for our servers. i have the DNS working properly (resolving local machines and using the ISP dns if it can't). so i put the DNS server ip into the "Static DNS 1" field of the router settings. the other 2 static dns fields are empty.the problem is that the router is still using the ISP dns server as the primary and my local dns server as the secondary. i verify this in two places. first, if i go to the "status" tab, DNS 1 shows the ISP server while DNS 2 shows my local DNS server. secondly, if i connect to the wireless device with a linux-based machine, the /etc/resolv.conf file shows the nameserver ips in the same incorrect order.
View 1 Replies View RelatedWe have cisco 5510 and on our floor we have client who we provide internet connection. One of our client has small server and 2 computers and they want setup vpn connection so they can access their server from outside. We have only one static public ip for firewall and exchange. We don't want provide another public static ip to the our client so they can setup the vpn. Is their any other way to setup vpn for them? can they the use our 1 public ip for vpn?
View 11 Replies View RelatedI have been tasked with setting up a guest wireless network for a remote office. They would prefer that the guest network be on a different VLAN than the trusted network, and they want to use a different outside IP address for the guest network.
I am trying to figure out how to configure the ASA so that it supports two different LANS, each with it's own outside IP address. Is this possible?
I am trying to configure access to several remote offices for users who VPN into our main datacenter. The datacenter has a 5520, and the branches are connected through IPSec L2L VPNs. Branches all have 5505 or 5510's. Remote users use IPSec via the Cisco remote Client. Remote access into our data center works, and the L2L VPNs are perfect...just now that i need remote users to access the branches after Remote access VPNing (for support) i cant get that part to work.
View 2 Replies View RelatedI'm setting up a second exchange 2010 server at a DR location and have been experiencing some problems. The two sites are connected via a pair of ASA5510's using the point to point VPN. I want to rules out any possible VPN issues that may be blocking ports and wanted to see if there is an easy way to do this and simply allow all traffic without any restrictions between the two ASAs. I've attached the scrubbed configs here...Ewing is the primary site and DBSi is the DR site.
View 2 Replies View RelatedWe have an ASA5510 that we need to open port 25 to allow mail traffic to our internal Exchange server.We have 2 interfaces defined... one named Internal on eth0/3 ip 10.1.x.x and one named Internet on eth 0/0 ip 96.56.x.x.We followed the instructions in ASDM for allowing access to a public server but confusion over definitions have stopped us.ASDM asks for the internal interface and the internal server IP... no problem there because the internal interface and server have two different IP addresses. The Internal interface is eth 0/3 (10.1.1.1) and the server is 10.1.1.2.
However, when we get to the External interface (eth 0/1) there is only a single IP address 96.56.x.x but the ASDM asks for an Interface IP and the IP people would use to get to the mail server from the outside. Inasmuch as we have only 1 external IP address (which connects to our upstream Cisco router which in turn connects to the ISP modem) we used the same IP for both but the ASDM returns an error indicating they must be different.
Apparently we do not have a clear understanding of what the ASDM is actually asking for. When the ASDM asks for the external interface we assumed it was asking for the named value we gave the interface (which is Internet). The named value "Internet" has an ip associated with it 96.56.x.x. But when the ASDM asks for the ip people on the outside would use to get to the mail server (we created a named value called "mail server" and gave it the same ip address as the external named value. This duplication of ip address causes the ASDM to return the error stating that external Interface to be used and the external ip to be used cannot be the same.Have we made an error when we assumed that when the ASDM asked for the external interface it meant the ip of the external interface or was it asking for the eth number (as in eth 0/0) for the interface?
I just finished implementing a VOIP install and I am trying to setup some softphones and in order to allow the softphones to work I need to open some specific ports for outbound. I am not a Cisco guy, I am a Windows Administrator that also has to maintain my Cisco infrastructure.
View 3 Replies View RelatedWe are running a Cisco ASA 5510 in our district. We have been using it for about a year and a half after an upgrade from our PIX. I have been using the CLI to manage it but I wanted to start using the ASDM. I installed the ASDM Launcher last Friday but could not access it. I have enable the http server on the ASA, assigned an IP to the interface, and granted my machine's IP inside access. On Friday I was unable to launch the ASDM. I then downgraded Java. I came in this morning and was able to connect through the launcher. However I could not make any changes as it would give me an error message and often popped up with "lost connection" type messages. I then closed the ASDM but could not reconnect after that. When I try to connect through the launcher I receive the message "Unable to launch ASDM from 172.16.5.1: Connection reset". When I try https://172.16.5.1/admin/ from a browser I simply receive "page cannot be displayed". I'm not sure why I can't connect.
[Code] ........
I got a situation here for Nat-ed IPs i configured. I expected to open some ports on the interface to allow certain traffics to pass through, yet there are some of them are failed. Down is my current config.
object-group service DM_INLINE_SERVICE_1
service-object icmp
service-object tcp destination eq https
[Code]....
The only ports opened are 443, www, 3389 while ports domain, 5061,3478,3389. how to open domain, 5061, 3478, and 3389 ports on my ASA .
Our Headquarter (asa 5510) is running a site to site vpn connection with a Branch office (router 2811). All remote users are accesing the internet through the VPN and also accesing headquarter file servers.I want to know if there is a way for some remote users to be able to use the vpn for accesing the file servers but to access the internet through the branch office. The rest of the remote users will be still accessing the internet through VPN.
View 2 Replies View Relatedwe have two ASA 5510s one in 8.4(4) and one in 8.2(5) in a site-to-site VPN setup. All internal traffic is working smoothly.Site/Subnet A: 192.160.0.0 - local (8.4(4)) Site/Subnet B: 192.260.0.0 - remote (8.2(5)) VPN Users: 192.160.40.0 - assigned by ASA When you VPN into the network, all traffic hits Site A, and everything on subnet A is accessible.
Site B however, is completely inaccessible for VPN users. All machines on subnet B, the firewall itself, etc... is not reachable by ping or otherwise.There are also some weird NAT rules that I am not happy with that were created after I upgraded Site A ASA to 8.4
Site A internal: 192.160.x.x External: 55.55.555.201(main)/202(mail)
Site B (over site-to-site) is 192.260.x.x External: 66.66.666.54(all)
I pretty much just have the basic NAT rules for VPN, Email, Internet and the site-to-site.What do I need to add for the VPN to be able to access the site-to-site network?
Here is my NAT config:
nat (inside,Outside) source static DOMAIN_LOCAL DOMAIN_LOCAL destination static VPN_Network VPN_Network no-proxy-arp route-lookup
nat (inside,Outside) source static DOMAIN_LOCAL DOMAIN_LOCAL destination static DOMAIN_REMOTE DOMAIN_REMOTE no-proxy-arp route-lookup
!
object network DMZ_Network
nat (DMZ,Outside) dynamic interface
object network DOMAIN_LOCAL
[code]....
We have a ASA5510 and I need to open port 22 for a speacific IP in our LAN outbound only.
View 15 Replies View RelatedIs there a way of ascertaining whether my 5510's have 1 memory slot or 4 memory slots without having to open the chassis?
View 6 Replies View RelatedI would just like to to open UDP port 123 in the ASA 5510 Firewall so that our Primary Domain Controller could use this port to sync time with an external time source. We have already added an access rule for this port under the firewall configuration in ASDM 6.4 and this port was also allowed in the inbound and outbound rule of the PDC's Firewall but it seems that it was still blocked.
View 23 Replies View Related