connchri
Daemon Poster
- Messages
- 1,025
- Location
- Scotland, UK
Hello,
Right, I'm usually well clued up with networking (at least enough to get by), but before I go out and start buying hardware, I could do with someone who knows about networking to help me set up this network.
Right, the situation is this: I have an office at a business park, and they offer services. Mainly heating, electricity, (the usual) but this also provides internet access via your usual Cat5/6 port.
We have been using an old router (BT HomeHub3) purely as a hub, with WiFi, to connect all our computers and WiFi stuff (phones, laptop, etc) to the internet. This works great, and it's been fine for now. Under this setup, all our IP addresses are giving via DCHP from the sites IT services. As such, we have no control over IP addresses or are we able to seragate our network.
We've now grown to the point that we need an SQL database, and we've decided that since we've got our hands on an old HP, Core 2 Duo based Xeon, Workstation (8GB ECC RAM, 5 HDD's in Raid 5 with battery backup cache etc etc) with Windows 2012, we were going to use this as our server - to host virtual machines. (The Database won't be getting hit with too many queries or transactions, so it'll cope fine in a CentOS or Debian VM).
Here's the problem that I have. I want to completely segragate our internal network, so we have control over our own IP addresses and to isolate our computers from the sites IT network - yet still use them for internet access. As far as I understand this would require setting up our own network, using our own IP scheme, and then getting access to the internet via their network by setting up a gateway with NAT or something or other.
The likely hood is, this will result in double NAT access to the internet - I don't forsee this as being a problem as we primarily use the internet for HTTP traffic and e-mail.
So, can someone please point out, with the correct terminology (so I don't confuse myself) how I would go about setting up such a system? I've got a bit of money that I can spend on this, and countless routers, and spare PCs, that might be able to do such a thing. Or if someone can point me in the right direction, that would be great.
Right, I'm usually well clued up with networking (at least enough to get by), but before I go out and start buying hardware, I could do with someone who knows about networking to help me set up this network.
Right, the situation is this: I have an office at a business park, and they offer services. Mainly heating, electricity, (the usual) but this also provides internet access via your usual Cat5/6 port.
We have been using an old router (BT HomeHub3) purely as a hub, with WiFi, to connect all our computers and WiFi stuff (phones, laptop, etc) to the internet. This works great, and it's been fine for now. Under this setup, all our IP addresses are giving via DCHP from the sites IT services. As such, we have no control over IP addresses or are we able to seragate our network.
We've now grown to the point that we need an SQL database, and we've decided that since we've got our hands on an old HP, Core 2 Duo based Xeon, Workstation (8GB ECC RAM, 5 HDD's in Raid 5 with battery backup cache etc etc) with Windows 2012, we were going to use this as our server - to host virtual machines. (The Database won't be getting hit with too many queries or transactions, so it'll cope fine in a CentOS or Debian VM).
Here's the problem that I have. I want to completely segragate our internal network, so we have control over our own IP addresses and to isolate our computers from the sites IT network - yet still use them for internet access. As far as I understand this would require setting up our own network, using our own IP scheme, and then getting access to the internet via their network by setting up a gateway with NAT or something or other.
The likely hood is, this will result in double NAT access to the internet - I don't forsee this as being a problem as we primarily use the internet for HTTP traffic and e-mail.
So, can someone please point out, with the correct terminology (so I don't confuse myself) how I would go about setting up such a system? I've got a bit of money that I can spend on this, and countless routers, and spare PCs, that might be able to do such a thing. Or if someone can point me in the right direction, that would be great.