This article describes the most common setups that you can use to set up Windows Small Business Server (Windows SBS) 2003 for Internet access by using one or two network adapters.
You can also use the information in this article to help troubleshoot any of the following situations:
Load times are slow during the "Configuring Network Connections" phase of computer startup.
Users can't access the Internet.
Users can't log on to the domain.
The Exchange server can't send email messages, receive email messages, or both.
Event ID 5775 DNS deregistration errors are generated when a domain controller cannot unregister a specific resource record.
We recommend that you set up Windows SBS by using the Configure E-mail and Internet Connection Wizard (CEICW). You may have to manually set up some settings in scenarios that aren't supported by the wizard.
Firewalls are very important to help keep a server and network secure. There are four scenarios for using Windows SBS 2003 to set up firewall protection.
Scenario 1: Use a router or a firewall hardware device, or use firewall software that is external to the server.
Many hardware routing devices can act as a firewall, and there are different levels of firewall protection with these devices. Make sure that you choose a device that meets your security requirements. Many of these devices support UPnP architecture. UPnP-certified routers are supported by Windows SBS and can be set up by using the CEICW. Additionally, there is firewall software, such as Microsoft Internet Security and Acceleration Server (ISA), which can be run on a separate computer. Make sure that firewall software that is run on a separate computer or firewall hardware that is not UPnP certified is set up manually.
Scenario 2: Use the Routing and Remote Access Basic Firewall functionality that is included with Windows SBS.
Routing and Remote Access Basic Firewall is used by Windows Small Business Server 2003 to offer basic firewall protection. For more information, go to the following Microsoft website:
When you run the CEICW, click the Enable Firewall option. The Routing and Remote Access Basic Firewall is set up and enabled if ISA is not installed and if any one of the following conditions is true:
You are using a dial-up connection to the Internet.
You are using a direct broadband connection to the Internet. (This option requires that your server has two network adapters.)
You are using a direct broadband connection that requires a user name and a password.
Scenario 3: Install and then run firewall software, such as ISA, on the server.
Windows SBS 2003 is fully compatible with Microsoft ISA Server 2000. Running the CEICW prepares ISA for server connectivity. Non-Microsoft firewall software may create conflicts with server tasks if the software is not set up correctly.
Scenario 4: Use a combination of scenario 1 with either scenario 2 or scenario 3.
When you use the CEICW with a UPnP-certified router, the CEICW can set up both the server and the router.
This list shows the six most common connection types. The table after this list has configuration information. You can use the CEICW options to set up these connection types:
Broadband - Examples of broadband connections include cable modems, DSL, or any variant of T1.
Modem - This type can be plain old telephone service (POTS) that you connect to by using a modem, or it can be Integrated Services Digital Network (ISDN) that you connect to by using a terminal. The modem or terminal must be connected to the server through a Common Object File Format (COM) port or through a hardware card that is installed in the server.
If you connect to POTS or ISDN by using a network router, treat that connection as a broadband connection.
Router - A router is a device that maintains its own IP address. (It may not offer firewall protection.) If you have a router that supports UPnP, the CEICW can set it up for you. However, you can always decode to manually set up a router.
PPPoE - Point to Point Protocol over Ethernet (PPPoE) is used when your Internet service provider (ISP) requires a logon account and a password for the connection. If you want to use a router, verify that the router provides PPPoE credentials to your ISP, and then treat your connection as a local router device by using an IP address. Note PPPoE does not work through a router.
Network adapters - This is the number of network adapters on the server that will be connected to the Internet and to the local area network (LAN). A two-network adapter setup connects one adapter to the LAN and connects the other to the Internet. A one-network adapter setup connects a single network adapter to the LAN. A router that is connected to the LAN or to a modem that is connected to a server provides connection to the Internet.
CEICW Configurations - The following table lists the options that can help you use the CEICW. Numbers 1 through 9 in the CEICW Option column refer to instructions that are listed in the CEICW Options section. Configuration settings for the firewall packet, for websites, and for email are not covered in this article. Complete the CEICW according to your business requirements.
These settings are for all servers. This applies to a single network adapter and to the local network connection adapter in a
two-network-adapter configuration.
Verify the Domain Name System (DNS) pointers. To do this, follow these steps:
Click Start, point to Control Panel, and then click Network Connections.
Right-click Server Local Area Connection, and then click Properties.
Collapse this imageExpand this image
Click Internet Protocol (TCP/IP), and
then click Properties.
Collapse this imageExpand this image
Do not select the Obtain an IP address
automatically or the Obtain DNS server address
automatically options. Make sure that the IP address for the server local area connection is a statically assigned address. Make any changes to the static IP address or to the subnet mask on the local network connection by using the Change Server IP Address Tool.
In the Internet Protocol (TCP/IP) Properties dialog box, click the Use the following IP address option. In the following boxes, type the IP address or subnet mask, as appropriate:
IP address Type the static private IP address for the local area connection adapter that is located in the Local Area Network (LAN). For example, type 192.168.16.2.
Subnet mask Type the static subnet mask for the local area connection adapter that is located in the LAN. For example, type 255.255.255.0.
Default gateway
Leave this box blank, or type the IP address of your router (if you are using a
router).
Collapse this imageExpand this image
Select Use the following DNS server address. In the Preferred DNS server box, type the IP
address of your server's local area connection. Leave the Alternate DNS
server box blank.
Collapse this imageExpand this image
Important Use the IP address from the server's local area connection for
the preferred DNS server on the external network connection. Do not use DNS
that is provided by your ISP or router, and do not click the Obtain DNS
server address automatically option.
Click Advanced, and then click the
DNS tab.
Collapse this imageExpand this image
In the table under DNS server addresses, in
order of use, edit the table so that it has only a single entry for the IP address of the server's local area connection.
Use the default settings for the remaining DNS properties; select the Append parent suffixes of the primary
DNS suffix check box, and then select the Register
this connection's addresses in DNS check box.
Click the WINS tab.
Collapse this imageExpand this image
In the table under Windows Internet Name
Service (WINS) addresses, edit the table so that it has only a single entry for the IP address of the server's local area connection.
Use the default settings for the remaining WINS properties: Select the Enable LMHOSTS lookup check box, click Enable NetBIOS over TCP/IP , click
OK, and then click OK again to return to the
Network Connections window.
Verify the DNS server configuration. To do this, follow
these steps:
Click Start, point to
Administrative Tools, and then click DNS.
Click your server's name under DNS,
and then right-click Properties.
Collapse this imageExpand this image
On the Interfaces tab, make sure that the
server's local area connection IP address is listed in the Listen On:
IP Address table.
Collapse this imageExpand this image
Click the Forwarders tab.
Collapse this imageExpand this image
Under Selected domain's forwarder IP address
list, type the DNS server addresses that were provided by your ISP.
Clear the Do not use recursion for
this domain check box.
Click Apply, and then click
OK.
Second network adapter configuration
These settings are only for servers that have two network adapters. The settings apply to the network adapter that connects to the Internet.
Verify the DNS pointers:
Click Start, point to Control
Panel, and then click Network Connections.
Right-click Network Connection (for the connection to the Internet), and then click Properties.
In the Internet Protocol (TCP/IP)
Properties dialog box, click one of the following options:
Obtain an IP address
automatically
Use the following IP address If you select this option, type the IP address or subnet mask in the following boxes, as appropriate:
IP address Type the static IP address that is provided by your ISP or type the IP address that you want to use.
Subnet mask Type the static subnet mask that is provided by your ISP or type the subnet mask that you want to use.
Default gateway Type the static IP address that is provided by your ISP or type the IP address that you want to use.
Select Use the following DNS server address. In the Preferred DNS server box, type the IP
address of your server's local area connection. Leave the Alternate DNS
server box blank.
Collapse this imageExpand this image
Important Use the IP address from the server's local area connection for
the preferred DNS server on the external network connection. Do not use DNS
that is provided by your ISP or router, and do not click the Obtain DNS
server address automatically option.
Set the binding order:
Open Network Connections.
On the Advanced menu, click
Advanced Settings.
Collapse this imageExpand this image
All the local area connections and remote access
connections appear in the top window that is named
Connections. Use the arrow keys to move connections to the
following order:
Server local area connection (local area network adapter)
Network connection (Internet connection adapter)
Any additional network adapters
(Remote access connections)
Collapse this imageExpand this image
Click OK.
Close the Network and Dial-up
Connections dialog box, and then restart the server.
CEICW Options
This section contains the steps for the CEICW for the nine most common setups. See the CEICW Options table earlier in this article to find the option that best matches your settings. All the steps start on the Connection Type page. To reach this page, click Next on the Configure E-mail and Internet Connection Wizard Welcome page. To start the CEICW, click Start, click Server Management, and do one of the following:
In the navigation pane (the left pane), click To Do List. In
the details pane, click Connect to Internet.
Collapse this imageExpand this image
In the navigation pane, click Internet and
E-mail. In the details pane, click Connect to
Internet.
Collapse this imageExpand this image
Option 1: Two network adapters - direct connection to broadband
On the Connection Type page, click
Broadband, and then click Next.
Collapse this imageExpand this image
On the Broadband Connection page,
under My server uses a direct broadband connection, click
Next.
Collapse this imageExpand this image
If your network connection to the Internet is disabled, you will receive the Network Connection, You must setup and enable the network connection to your ISP page. On this page, under Connection name, click Network Connection. If you do not receive this page, go to step E.
Configure IP settings according to the requirements of
your ISP, and then click Next.
The network connection is now enabled.
On the Network Connection, You must click the
connection for your ISP and local network page, under ISP
network connection, click Network Connection.
Collapse this imageExpand this image
Under Local network connection, click
Server Local Area Connection, and then click
Next.
On the Direct Broadband Connection
page, next to Preferred DNS server and Alternate DNS
server, type the IP addresses that are provided by your ISP. To change
the Default gateway setting, type the default gateway IP
address if the IP address is not provided by DHCP. Click Next.
Collapse this imageExpand this image
Complete the Configure E-mail and Internet Connection
Wizard.
Option 2: Two network adapters - direct connection to broadband with PPPoE
On the Connection Type page, click
Broadband, and then click Next.
Collapse this imageExpand this image
On the Broadband Connection page,
under My server uses, click A connection that requires
a user name and password (PPPoE), and then click
Next.
Collapse this imageExpand this image
On the PPPoE Connection page, under
PPPoE connection, click a connection, or create a
new connection.
Collapse this imageExpand this image
Verify that the ISP user name and password match the
information that your ISP provided. Configure the static IP address if it is required, and then click Next. If the network connection
to the Internet is disabled, the Network Connection page appears. If the page does not appear, go to step E. On the Network
Connection page, set up the IP settings according to the
requirements of your ISP, and then click Next.
The network connection is now enabled.
On the Local Network Connection page,
under Connection Name, click Server Local Area
Connection, and then click Next.
Collapse this imageExpand this image
Complete the Configure E-mail and Internet Connection
Wizard.
Option 3: Two network adapters - manual router connection to broadband
If you receive a dialog box that says that a UPnP
router was detected and you want to set up the router automatically, go to
the "Option 4: Two network adapters - UPnP router
connection to broadband" section.
Click No to the question "Do you want
the wizard to configure the router?"
On the Connection Type page, click
Broadband, and then click Next.
Collapse this imageExpand this image
On the Broadband Connection page,
under My server uses, click A local router device with
an IP address, and then click Next.
Collapse this imageExpand this image
On the Router Connection page, next
to Preferred DNS server and Alternate DNS
server, type the IP addresses that are provided by your ISP. In the
Local IP address of router box, type the IP address of the
router that the server uses to connect to the router.
Collapse this imageExpand this image
Clear the My server uses a single
network connection for both Internet access and the local network
check box, and then click Next.
On the Network Connection, You must enable and
configure the network connection to your ISP page, under the Connection Name, click Network
Connection.
Collapse this imageExpand this image
If your router provides DHCP, click Obtain an
IP address automatically (use DHCP). If your router does not provide
DHCP, click Use the following IP address, and then type the IP address and the subnet mask according to the router settings. The default gateway is the IP address of the router.
Click Next.
The network
connection is now enabled.
On the Network Connection, You must click the
connection for your ISP and local network page, click Network
Connection under the ISP network connection.
Collapse this imageExpand this image
Under the Local network connection,
click Server Local Area Connection, and then click
Next.
Complete the Configure E-mail and Internet Connection
Wizard.
Option 4: Two network adapters - UPnP router connection to broadband
Before you run the Configure E-mail and Internet
Connection Wizard, make sure that the network connection to the router is
enabled, that the cables are connected, and that the router is turned
on.
A message that reports that the UPnP router was
detected appears. If the message does not appear or if you want to set up the router manually, go to the "Option 5: Two network adapters - manual router connection to broadband" section.
On the Do you want the wizard to configure the
router? page, click Yes.
On the Router Connection page, the
values will be populated by the UPnP router. Type different values if you want.
Collapse this imageExpand this image
Clear the My server uses a single
network connection for both Internet access and the local network
check box, and then click Next.
On the Network Connection, You must enable and
configure the network connection to your ISP page, under Connection Name, click Network Connection.
Collapse this imageExpand this image
Click Obtain an IP address automatically (use
DHCP), and then click Next.
On the Network Connection, You must click the
connection for your ISP and local network page, click Network
Connection under ISP network connection.
Collapse this imageExpand this image
Under Local network connection, click
Server Local Area Connection, and then click
Next.
Complete the Configure E-mail and Internet Connection
Wizard.
Option 5: One network adapter - manual router connection to broadband
On the Connection Type page, click
Broadband, and then click Next.
Collapse this imageExpand this image
On the Broadband Connection page,
under My server uses, click A local router device with
an IP address, and then click Next.
Collapse this imageExpand this image
On the Router Connection page, next
to Preferred DNS server and next to Alternate DNS
server, type the IP addresses that are provided by your ISP. In the
Local IP address of router box, type the IP address of the
router that the server uses to connect to the router.
Collapse this imageExpand this image
Select the My server uses a single
network connection for both Internet access and the local network
check box, and then click Next.
A message may appear that warns that the firewall that is provided cannot be configured. You can view information about configuration settings for a firewall device.
On the Network Connection page, click
Server Local Area Connection under the Connection
Name.
Click Next.
Complete the Configure E-mail and Internet Connection
Wizard.
Option 6: One network adapter - UPnP router connection to broadband
Before you run the CEICW, make sure that the network connection to the router is enabled, that the cables are connected, and that the router is turned on.
A message that reports that the UPnP router was detected appears. If the message does not appear or if you want to set up the router manually, go to the "Option 5: Two network adapters - manual router connection to broadband" section.
When the wizard prompts you to indicate whether you want to configure the router, click Yes.
On the Router Connection page, the values are populated by the UPnP router. Type different values if the values that you want are different.
Collapse this imageExpand this image
Select the My server uses a single network connection for both Internet access and the local network check box, and then click Next.
A message may appear that warns that the firewall that is provided cannot be set up. You can view information about configuration settings for an existing firewall device.
Complete the CEICW.
Option 7: One network adapter - direct connection to broadband with PPPoE
On the Connection Type page, click Broadband, and then click Next.
Collapse this imageExpand this image
On the Broadband Connection page, under My server uses, click A connection that requires a user name and password (PPPoE), and then click Next.
Collapse this imageExpand this image
Under PPPoE connection, click a connection or create a new connection. Make sure that the contents of the ISP user name box and the Password box
match the user name and password that your ISP provided. Enter the static IP address if it is appropriate, and then click Next.
Collapse this imageExpand this image
Complete the CEICW.
Option 8: Two network adapters - modem connection to POTS/ISDN
On the Connection Type page, click Dial-Up, click Next.
Collapse this imageExpand this image
On the Dial-up Connection page, under Dial-up connection, click a connection or create a new connection.
Under PPPoE connection, click a connection or create a new connection. Make sure that the contents of the ISP user name box and the Password box match the user name and password that your ISP provided. Enter the static IP address if it is appropriate, and then click Next.
Under Connection Name, click Server Local Area Connection, and then click Next.
Collapse this imageExpand this image
Complete the CEICW.
Option 9: One network adapter - modem connection to POTS or ISDN
On the Connection Type page, click Dial-up, and then click Next.
Collapse this imageExpand this image
On the Dial-up Connection page, click a connection under Dial-up connection, or create a new connection.
Under PPPoE connection, click a connection or create a new connection. Make sure that the contents of the ISP user name box and the Password box match the user name and the password that your ISP provided. Enter the static IP address if it is appropriate, and then click Next.
Back to the top
