Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Question

Advice for Network Configuration

Jun 18, 2015 10:58AM PDT

I apologize in advance for my immature knowledge, and humbly request your help with my network configuration:
I have an ActionTec C1000A (Century Link) modem/router that is set as my DHCP with a gateway of 172.18.12.1
Underneath the ActionTec, I have 3 desktop computers (CompA, CompB, and CompC running Windows Cool and a Netgear ProSafe FVS318Gv2 (DHCP turned off) with a gateway of 172.18.12.201
Underneath the Netgear router, I have 2 servers (ServerA and ServerB running Windows Server 2012). ServerA static external: 67.40.65.169, Server A static internal: 172.18.12.200, ServerB static external: 67.40.65.170, Server B static internal: 172.18.12.36

My biggest problem is having the 2 servers on really what seems to be a separate network (the cat5 from the ActionTec to the Netgear is plugged into the Netgear WAN port). The ONLY reason I have the Netgear ProSafe in my network is because I need to expose ServerA and ServerB publicly (I can't accomplish this using the ActionTec firewall, so I had to bring the Netgear ProSafe in so that I can expose them using the Netgear router).
Furthermore, my showstopper is this: I cannot touch ServerA or ServerB from CompA,B, or C internally (separate network) or externally (I have NO idea why). Oddly, any computer outside my network can touch ServerA and ServerB??? I am so confused.
I having been at this for over a week. I have tried to attach the Netgear ProSafe as a component of the ActionTec network (plug the cat5 into the Netgear ProSafe LAN port), of course that solves my showstopper (CompA,B, and C can all see ServerA,B), but I lose public access to ServerA and ServerB.

I have a strong feeling I am making this much more complicated than it needs to be. Any help would be GREATLY appreciated. In addition, I have a very simple diagram if you are interested that I can mail.

Thank you,

Matt

Discussion is locked

- Collapse -
Answer
This looks incorrect for a business ISP connection or plan.
Jun 18, 2015 11:11AM PDT

Back to your ISP to get more IPs for those servers. And talk long and hard with your IT folk to straighten this out. It certainly does not look like what we would use at home or with an everyday what millions use internet connection.

- Collapse -
Thanks for your input
Jun 19, 2015 9:39AM PDT

Thank you very much for taking the time, R. Proffitt.
I sincerely appreciate it.
I do have a set of 8 IPs from my ISP, I have used 2 and I do indeed have my 2 servers public - this part is a success...BUT for some REALLY strange reason, any computer under the ActionTec and above the Netgear cannot see those 2 public servers - everyone else can. Unfortunately, I am having to fill-in these large knowledge gaps (very little to fill-in with Happy
Thanks again for your help. Much appreciated.
Matt

- Collapse -
Such a setup
Jun 19, 2015 9:55AM PDT

Is usually done with experienced network folk. Those folk that have put in more than a few years. Today I'm running into folk that are still thinking that all is just a click this button away solution.

This setup would have to be designed and tested. Not every setup will work but looking it over it's not for everyone. That is, I would know the servers are inaccessible by the design. There would be no mystery there. I guess folk new to this and that's not a sin! would lose sleep and hair but talk with your network guru about adding a second network card to put access to these on your LAN.

- Collapse -
Answer
About access.
Jun 18, 2015 11:49AM PDT

If it's not on the lan you have to find a path to it. But this setup is something your IT staff needs to stand up and correct. Remember that one server is easy but you have 2. It's definitely beyond the home user realm and business class. That's where you get to your IT staff (businesses have such or accept the pain?) and have them fix it up to do what you want or explain to you how to work on a server that's not on your lan.

For example, some IT staffers will install a second network card to connect to the lan for management. But that's beyond many of the home users you see here.