Small Business Server
Part 2
Presented by :
Robert Crane BE MBA MCP [email protected]
Computer Information Agency
2
Agenda
Week 1 – What is SBS / Setup
Week 2 – Using & configuring SBS
3
Week 2 Agenda
Connecting to Internet
Remote access
Setting up user network user
Setting up network workstations
Setting up monitoring
Setting up backups
Faxing
5
SBS supported connection
methods
Broadband connection with local
router.
Direct broadband connection.
Broadband connection with user
authentication ( PPoE ).
6
Dial up
SB Server Modem Internet
• Up to 56k Bps speed ( slow ). • Cheap.
• Local call cost on every connection. • No additional firewall protection. • Dial up must configured on server.
7
Broadband – Local router
SB Server DSL or Internet cable modem
• Fast.
• Normally used for servers with a single network
card
• Always on.
• No additional firewall protection.
• Unable to use SBS as additional firewall • More complex to maintain.
8
Broadband – User
authentication
SB Server DSL or Internet cable modem • Fast.• ISP login details configured on server. • Always on.
• No additional firewall protection.
• Connection must be configured on server. • More complex to maintain.
Switch
9
Direct Broadband
SB Server Router / Firewall Internet
• Fast.
• No ISP login details to maintain. • Always on.
• Additional firewall protection.
• Connection doesn’t have to be configured on server.
• Internet connection load maintained independent of server. • More reliable and easier to configure / troubleshoot.
Switch
10
12
Web domain names
Appears far more professional.
Cheap and portable ( ie can move
between Internet providers ).
Is easier to remember than a static IP
address.
Can have multiple domain names
13
Need to know
Connection method.
ISP login / password if required.
IP address of router.
ISP DNS addresses.
Remote access options ( Remote Web
Workplace, Outlook Web Access, etc ).
Whether plan to use server for
16
17
18
28
Hardware firewall config
Need to allow following ports through
hardware firewall to SBS machine ( router port forwarding )
– Port 21 = File Transfer Protocol ( FTP ) – Port 25 = Internet emails
– Port 80 = Web site
– Port 110 = Allow POP3 to Exchange – Port 500, 1701, 1723 = VPN protocols
– Port 443 = Permit secure web connections – Port 444 = External Sharepoint access
– Port 3389 = Terminal Services
30
Less open ports the
better
Minimum open ports
– Port 443 = Permit secure web connections
31
SBS Certificate
SBS creates its own encryption certificate so
that remote traffic is protected.
This certificate is not authenticated by
“trusted third parties” like Verisign.
When you access SBS remotely you will
prompted with a warning about the certificate.
To overcome this warning in future simply
32
33
Connect to the Internet
34
Corporate web site
Use an external hosting business,
unless you run a back end database.
– Web sites are most subject to attack. – Web site traffic can slow link.
– If your SBS is down your web presence isn’t down.
– Hosting companies have faster internet links.
35
Remote Access - VPN
SB Server ADSL Router Internet Remote User Virtual Private Network
Encryption Encryption
Data Data
Layer 3 Layer 2
42
Configuring VPN access
43
VPN considerations
Provides an unchecked tunnel into an
organization.
Can never be 100% sure that VPN
client machine is clean.
VPN only as good as password.
VPN is generally slower than other
remote access methods.
Routers can also functions as VPN
44
Adding users
Use existing templates whenever
possible.
Possible to create additional templates.
Use consistent naming convention.
Can be changed later if needed.
53
Creating users
54
Connecting workstations
2 parts
Server
– Create accounts for computers on server.
Workstation
– Establish basic workstation connectivity. – Browse to web page.
55
Workstation limitations
Wizards only support Windows 2000
Pro or XP Pro.
Windows 98 does work but has major
limitations.
Can’t use passwords > 14 characters
with Windows 98.
56
57
58
59
60
61
62
63
Connecting computers -
Server64
Connecting computers -
Workstation
Connect workstation to network.
Boot workstation.
Open browser.
Type in
http://servername/connectcomputer
65
66
67
68
69
70
71
72
73
74
Demo
75
Configuring Faxing
Need at least 1 fax modem on server.
Faxes are sent from desktop just like
printing to printer.
Need to determine method of
delivering faxes – printer, email, file.
85
Configuring faxing
86
Configuring Monitoring
Server can produce health reports.
Server can produce usage reports.
Reports can be emailed or printed
automatically.
Report can be emailed externally.
Alerts can automatically be triggered
88
89
97
Configuring Monitoring
98
Configuring Backup
SBS backup only supports tape and file
backups.
Additional programs like Arcserve and
Veritas will backup to DVD as well.
SBS backup doesn’t do SQL very well.
SBS backup only backs up entire mail
106
Configuring Backup
107
Configuring Groups
Configure security groups to secure
data.
Configure distribution groups to share
108
Configuring Groups
109
Configuring User
templates
Use if create users of a certain type
often.
User templates are basically disabled
users.
You can apply a template to user after
they have been created.
Applying a new template to user over
110
Configuring User
templates
111
Email options
Use ISP mail server to hold emails.
Retrieve them from ISP via POP3. Send them to ISP via SMTP.
Use SBS and Exchange server to
112
Emails – via ISP
SB server
`
Workstation
Internet ADSL Router
ISP Mail Server
Message
Workstation reads emails from ISP via POP3
Workstation sends emails via ISP and SMTP
Advantages
-No need for static IP -ISP can do filtering -Independent collection
Workstation emails saved to SBS
Disadvantages
113
Emails – via SBS
SB server ` Workstation InternetADSL Router Message
Mail sent directly to SBS from Internet
Advantages
-Emails received constantly -Can use OWA to send/receive -Can control setup from server
Workstation sends / receives from SBS
Disadvantages
-Must have static IP address
-Need to configure domain / MX record -SBS subject to spam
114
Intelligent Mail Filter
Free add on to Exchange server to
automatically place spam into user junk mail folder.
Unable to fine tune, set a tolerance level at
server.
Automatic updates of filtering now available
with Exchange Service Pack 2 + some configuration.
Only works when SBS set to receive emails
116
Sharepoint services
Internal web site that is at
http://companyweb/
Contains several types of items
– Document and picture libraries – Lists
117
118
Sharepoint services
Document and picture libraries
– Web pages that make it easy to view upload and organize documents.
119
Sharepoint services
Lists
– Web pages containing posting by network users.
120
Sharepoint services
Discussion boards
121
Sharepoint
122
References
http://www.microsoft.com/windowsserver2003/sbs/techin
fo/productdoc/default.mspx - SBS Documentation
http://www.microsoft.com/windowsserver2003/sbs/evalua
tion/trial/default.mspx - SBS 2003 Trial version
http://www.microsoft.com/downloads/details.aspx?Family
ID=537ac5b3-9ac2-4667-916b-99928bca9f70&DisplayLang=en – SBS 2008 Trial version
http://www.microsoft.com/windowsserver2003/sbs/techin
