|
Home > Archive > 70-217 > March 2002 > Real Network Design Problem.
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Real Network Design Problem.
|
|
| CyberDude 2002-03-18, 8:29 am |
| Is this possible?
A company has 8 departments, 3 of which have sub-departments.
Each department is connected to a fibre backbone.
The company has 150 clients, 2000 Pro and 9x.
They have four 2000 servers, each with 2 9Gb HD, 2 CPU's and 2 Gb RAM. (I know that the servers will require more HD and probably Hardware RAID). I have been given two different pieces of info that I am waiting for confirmation on: 1 says 2000 server and the other say 2000 advanced server.
From these servers the company wants:
AD, DNS, DHCP, WINS, web, e-mail, proxy, and sql.
I know that for redundancy it will be best to have 2 to of everything, but I dont think it will be possible in this situation.
I the company uses NAT instead of a proxy server, that will eliminate one extra server app.
I know that it will be best to cluster the sql and the web servers, (is it a good idea to have sql and web running on the same server? Maybe not unless they have more CPU's and more RAM? If this is done then two of the servers can be used for as a cluster for sql and web). I know that the OS will have to be 2000 advanced for this.
Is it good for the two dc's to be dhcp, dns and wins as well? It sems quite a small company so I do not think there will be that much work load.
On the design side, as there are only a limited amount of servers, I believe that there can only be one domain. Do you have to have a site as well? If so there can only be one site. I was thinking that each department will be an OU, and that the ones with sub-departments I could nest other OU's for this. I think only one global catalog server will be required and there is no need for replication as everything is in the same place.
Can anyone give me an insight to this problem, saying what will and will not work and to say that if it is at all possible. Maybe the company will have to cancel some requests, like the web server and e-mail server. Will they need to use exchange server or will IIS be ok? Any comments on this is most welcome. I am try to help out but I am on the other side of the globe, so I have no live contact myself and am having to just use Q&A's to the company.
 | |
| TW2001 2002-03-18, 9:25 pm |
| First, Set 2 DC`s up.Have one hold the Global catalog.I would use one for Authentication and one for fail over.You want to have as little else as possible on the root DC.Do your main DNS on the Other box.
Current disk space available is paltry
Email solution-out of my realm of exp
I would build a Linux box for the DHCP and WINS.This will be solid,inexpensive and require little maintenence.
I dont think i would cluster sql with a web server.IIS is very vunerable and requires a lot of administration.Just dedicate a box to Sql and One to IIS.Still i do beleive in redundancy.It could work. | |
| Psydefx 2002-03-19, 1:20 am |
| Need to take a look at what will cause performance hits. Back to basics:
Processor
RAM
Disk
Network
Agree completely with TW2001 on DC/AD/GC, and can't argue with the Linux box either for the low overhead.(Second your DNS)
With your apps, you need to look at what kind of resources they are going to chew. How much mail runs (what mail services do they want (collab apps,etc), how many sql apps are going, and how much do they actually interact, what kind of web services offered (intra/inter/etc.). Balancing web, mail, & dbs is tough on two servers, but don't try to do it by guess, track down what they will need, then how you can optimize.
One domain definately sufficient, OUs good plan.
If you don't have this information, grab some Jolt, Starbucks Fraps, twinkies, and kiss your wife and kids (send them pix once a week so they remember what you look like when you get home in six months). | |
| CyberDude 2002-03-19, 4:00 am |
| Ok guys I have some more info, but it is about the physical side.
Each department is in a different block within 300m on a fibre backbone. No routers but all with switches. Do I need to create a site in the domain to cover this are, and then add all the subnets?
I am trying to get the company to procure more HD and an extra server.
Thank you for all your help so far.  | |
| Psydefx 2002-03-19, 11:06 am |
| Do you KNOW they need the extra server? If they use SQL for window dressing, or if they are happy with POP3, or if their traffic is minimal, they may not need it.
Just check throughput so you don't end up with egg on face.
Yeah, one site, multiple subnets, don't accept defaults on the switches, set all your client connectivity to FD@100, Portfast, etc.
Hope it helps.
Cheers! | |
| TW2001 2002-03-19, 11:35 am |
| Sites are used to control replication between Domain Controlers.Primarily to ease the load on network for this task.Workstations will look to the DC in the site they belong to authenticate so that is helpful as well.Realize that sites and services are for the AD replication.
How many subnets?
What is the current addressing scheme?
Where is the location of the NAT router?
Are the switches Layer 3 capable?
Questions,Questions  | |
| Psydefx 2002-03-19, 11:46 am |
| Oops??
You need a router if you're going to have separate subnets. (Or at least an RSM in one of the switches). Is this going to be handled by one of the servers or what?
Unless your fibre is like broken, though, you should still be on one site.. | |
| TW2001 2002-03-19, 12:23 pm |
| quote:
Unless your fibre is like broken, though, you should still be on one site..
Psydefx, for the sake of proffessional discussion can you elaborate on your recomendation in this situation(Im well aware of the "official" recomendation)
While we wait for Cyberdude. | |
| CyberDude 2002-03-19, 1:04 pm |
| Hi guys, back again. Well the company is adamant to only have four servers and no money for upgrades. I have informed their SA to try again and to ask for a small UNIX box. Hopefully she will get back to me ASAP. I think next tome I will say no, as this is driving me nuts for the pure fact it isnt feasible for me to see the actual network. There are no routers, and the services they are requesting they are that, a request. They have not got anything like it installed or running yet, so I am at a loss. All I can do is keep asking questions, and hopefully be able to come up with a good plan for her to implement. | |
| Psydefx 2002-03-19, 1:11 pm |
| No router, one subnet, one site.
With a router, goes to my questions on throughput. Please let me know if I am still being ambiguous. | |
| CyberDude 2002-03-19, 1:25 pm |
| I was of the understanding that you can still have subnets using a switch, as you can create VLAN's etc. Or am I talking BS?
| |
| Psydefx 2002-03-19, 1:46 pm |
| One VLAN will work to limit broadcast traffic. It can isolate your networks from one another on the broadcast side of the fence. If you were looking to have multiple VLANs, ie for each building, you need a router... "route once switch many" New stuff might be available, but this is what I understand to be current.
Again, we go back to the traffic... A switch might do it for them (doesn't sound like they're gearing up for tiny traffic though)
What is the NAT server???? Just wondering, because it's a router... | |
| TW2001 2002-03-19, 3:40 pm |
| When he was mentioning multiple subnets I was thinking of partioning it off a little.
VLANS is what i was getting at with Layer 3 switching.
Are you Consulting or just a friend helping out?At this point Id be saying call me when you get serious.
I mean I know you cant see it but what SA cant give you an inclination of what infrastructure is in place. | |
| CyberDude 2002-03-20, 4:50 am |
| They have not got a web server as yet, but want one, so they do not have a router of any sorts yet. They have an NT enviroment, which I have suggested that they could upgrade as well, but I keep being informed that it is not part of the equation. I am only trying to help out here, but it is beginning to evolve into a mission impossipbel, as to me it looks like the company wants a large collection of different servers squashed into four inadequate server machines. I am still waiting for more info. | |
| TW2001 2002-03-20, 7:52 am |
| Good luck. | |
| jeff_j_black 2002-03-20, 9:26 am |
| Sounds like it's about time to give them our addresses, so they know where to send the paychecks! It's good from a study standpoint to examine a 'real-life' scenario, just don't get suckered into sweatin' bullets to produce a solution, when part of the solution does not involve getting paid! There's a whole world full of people, that are long on needs and short on cash. You work hard to hone your knowledge, don't downplay the value of it by giving free consultations. If their ready to fly you out, and put you up, and buy you the stuff you need to get the job done, cool. Otherwise, they just lack the commitment that it takes to keep a technological edge above their competition and they'll be sunk sooner or later! The outcome of the Information Age is the next stage of our evolution, remember what Darwin said?
P.S. I even charge my friends, they get a preferred rate. | |
| TW2001 2002-03-20, 10:19 am |
| quote:
The outcome of the Information Age is the next stage of our evolution
|
|
|
|
|