Wan't to go Gigabit, but also want each PC to have an outside Internet IP address... HOW?

[CZroe]

Basically, I've almost put together a monster RAID-5 file-server and would like to make use of it with Gigabit Ethernet. Also, I get as many outside Internet IP addresses as I can use through a simple hub. Networking that way, I only get 500kbps networking and leave everything wide open to the net

I've tried everything BEGGED for information on how to configure VPN to provide IP addresses to my PCs on demand, but everyone suggests expensive hardware and simply insuults 2K Server's abilities thnx to M$

 

[Soybomb]

Couldn't you just plug your dsl/cable modem into a cheap linksys router and plug that into a gigbit switch with your workstations? Workstations are behind nat and on a gigabit switch then.

As far as the VPN goes I'll let someone else tackle that, I just make neat little ssh tunnels for my stuff.

edit: sorry misread your question, I saw "don't want each PC to have an outside IP addy..."

 

[Ichinisan]

With NAT, each PC does not have a real Internet IP address. This is useful because:

I can run multiple servers from any PC without configuring port forwarding.
I can get many more results on filesharing networks and remain MUCH more compatbile.
I can play legacy games and non-standard modern games which require each PC's address (ie, I can't play ZSNES over ZBATTLE.NET with two PCs behind the same network because the client will connect to itself!)
I can get greater bandwidth (My ISP caps speed per IP address)
I can FORGET firewall/NAT compatability issues.

I'll restore drive images every week and I have no sensitive information (All will be stored on the locked-down file server).

Damn, posted as my brother...

This is CZroe

 

[Oaf357]

A gigabit switch and multiple IP addresses from your ISP should work.

 

[beefjerky911]

what is your question? do you want each machine to have its own external ip? i used to work alot with vpn but i have no clue what you are asking to do.

 

[MrDudeMan]

yeah i dont understand the question...

 

[CZroe]

The question reworded:

How can I make a pure TCP/IP network, where every PC has an outside "Internet" IP address from my ISP PLUS access to my fileserver while not leaving the fileserver's shares accessible from the Internet? I would like to run Gigabit Ethernet between all the local PCs and keep them on the same subnet (My ISP assigns IP addresses from different subnets randomly), so a "second network" with VPN access to the Internet IP addresses sounds like what I need to use. How can I configure Windows 2000 Server's VPN to provide second "outside" IP addresses to my Gigabit LAN? Can I somehow configure XP's built-in VPN server the same way (I doubt it)? Is there another option besides VPN which doesn't involve losing my outside IP addresses (Ala plane-Jane NAT)? If the domain/VPN server also shares the files (Logical), what would keep them from being accessible from the Internet (Other than NTFS securities and such)?

Originally posted by: Oaf357
A gigabit switch and multiple IP addresses from your ISP should work.

I get multiple IP addresses from my ISP, but they are not always on the same subnet so my router makes all traffic between PCs go at cable-modem speeds. (I'm not using the router's NAT functions in order to maintain real IP addresses) Would a switch (Hardware/MAC-address based as opposed to IP-based) work much differently? What would keep my fileserver inaccessible from the Internet?

I was thinking... Create a private network between all PCs and then provide outside IP addresses through VPN (My friend's cable co provides his outside/Internet IP address through VPN for a monthly charge). Still, it would make sense for the Gigabit Fileserver to also share the Internet connection as the VPN server, but wouldn't that open the files up to the Internet just the same? How does anyone share files on a PC without a router or firewall to block external access? I keep getting the same answer: "Use a different networking protocol" but when using two independant networks I see no reason why TCP/IP wouldn't have some option. Also, how would I limit a share to ONE protocol? Wouldn't the share be available through all installed protocols that support file-sharing? I've never seen the option to make a network share only available through TCP/IP or NETBIOS. If the fileserver was completely offline I can see how that would work by simply not having TCP/IP on the other computers, but no thanks. There's got to be another way with purely TCP/IP. There's got to be another way without VPN.

 

[Oaf357]

Kinda sucks that they give IPs from different subnets. You might want to consider the option you mentioned or getting a "business" plan of some sort.

 

[dexter333]

Why don't you just change your subnet mask so that they are on the the same subnet?

 

[Oaf357]

Originally posted by: dexter333
Why don't you just change your subnet mask so that they are on the the same subnet?

He gets the IPs from his ISP.

 

[CZroe]

I haven't learned how to set up 2000 Server's VPN yet, and XP's VPN does not create a virtual adaptor for me to bridge with the cable-modem's NIC. Anyone know the next step?

Thnx!