-
- Sopto Home
-
- Special Topic
-
- PCI-E Card Knowledge
-
- Recommended Network Card Configuration for Forefront UAG Servers
PCI-E Card Knowledge
- Info about Network Interface Card Teaming
- How to Setup a Server with Multiple Network Interface Adapters?
- How to Reconnect an Internet Network Adapter for an Acer Aspire?
- 9 Things to Do When Your Internal Network Card Stops Working
- Ethernet Standards NIC for Home Networking
- What Is a Network Interface Adapter?
- How to Configure a Network Interface Card in Linux?
- How should Configure Your NIC for ISA and TMG?
- Recommended Network Card Configuration for Forefront UAG Servers
SOPTO Special Topic
Certificate
Guarantee
Except products belongs to Bargain Shop section, all products are warranted by SOPTO only to purchasers for resale or for use in business or original equipment manufacturer, against defects in workmanship or materials under normal use (consumables, normal tear and wear excluded) for one year after date of purchase from SOPTO, unless otherwise stated...
Return Policies
Defective products will be accepted for exchange, at our discretion, within 14 days from receipt. Buyer might be requested to return the defective products to SOPTO for verification or authorized service location, as SOPTO designated, shipping costs prepaid. .....
Applications
PCI-E NIC Cards provide redundant connectivity to ensure an uninterrupted network connection.
PCI-E NIC Cards are ideal for VM environments with multiple operating systems, requiring shared or dedicated NICs.
They are specially designed for desktop PC clients, servers, and workstations with few PCI Express slots available.
SNS Page
SOPTO Products
- Fiber Optic Transceiver Module
- High Speed Cable
- Fiber Optical Cable
- Fiber Optical Patch Cords
- Splitter CWDM DWDM
- PON Solution
- FTTH Box ODF Closure
- PCI-E Network Card
- Network Cables
- Fiber Optical Adapter
- Fiber Optical Attenuator
- Fiber Media Converter
- PDH Multiplexers
- Protocol Converter
- Digital Video Multiplexer
- Fiber Optical Tools
- Compatible
Related Products
Performance Feature
PCI-E Card Knowledge
Recommended
Recommended Network Card Configuration for Forefront UAG Servers
A high-level overview of NIC configuration best practice is provided below:
- The network card name used within the operating system should (ideally) be changed to closely match the associated Windows server network name. This clarifies assignment and improves supportability.
- Only one network interface should be configured with a default gateway.
- Only one network interface should be defined with DNS servers.
- Unused or unnecessary bindings should be removed from all interfaces, where possible, to improve security. This is often termed ‘interface hardening’.
- The default bind order should be amended to define a specific customized order.
Based upon these best practices, the configuration shown below is the standard approach as a part of Forefront UAG server build process.
10Gigabit Ethernet PCI Express 2.0 Server Adapters Card
Rename NICs:
Rename all NICs to descriptive names that ideally match the connection type and UAG wizard/console names.
UAG interface connected to the trusted network becomes: Internal Network
UAG interface connected to the untrusted network becomes: External Network
Please Note: Matching the names is not essential; it just makes mapping networks between UAG, TMG and Windows much easier when troubleshooting…
You should then have something like this:
.png)
Network Connections
Configure NICs:
The Internal Network NIC will normally be connected to your trusted environment. This could be your actual internal network (LAN) or could be a private DMZ (perimeter network) if using a back firewall.
Default Gateway should not be defined
DNS Servers should be defined
Register this connection’s address in DNS – Enabled
File and Printer Sharing for Microsoft Networks – Enabled
Client for Microsoft Networks – Enabled
NetBIOS over TCP/IP – Default or Enabled
A more detailed view of these settings is provided in the following example screenshots.
Networking items enabled for the Internal Network NIC:
.png)
Internal Networks Properties
Please Note: The above examples are for a non-NLB enabled system. If NLB is enabled within UAG, the ‘Network Load Balancing (NLB)’ items would be shown as selected in the NIC properties and should not be disabled.
.png)
General properties of the External Network NIC
.png)
Advanced properties of the External Network NIC
Amend Bind Order:
Edit the bind order (Alt|Advanced|Advanced settings…) to place the Internal Network above the External network as shown below (note bindings too):
.png)
Advanced settings
UAG Configuration:
When running the UAG Network Interfaces wizard, you should now see the following:
.png)
Define Network Adapters
By taking a peek in the TMG console, you should see that these settings are consequently inherited as follows:
.png)
Internal Properties
You should now have correctly configured network interfaces for Forefront UAG!
Important! As you have configured the default gateway on the External Network NIC, it is necessary to add static routes to define internal network subnets that are reached via the Internal Network NIC but located behind routers (including VLANs on layer 3 switches) on the internal network. The use of multiple default gateways is not supported and static routes are the recommended solution.
Once you have defined the appropriate static routes, you will then need to run the UAG Network Interfaces wizard to add the new subnets (called address ranges) to the internal network definition; this will consequently be inherited by TMG and allow correct traffic flow…
Hope this helps…
By the way, Sopto supplies high quality PCI Express Cards with reasonable price specifically for network servers. For the newest quotes, please contact a Sopto representative by calling 86-755-36946668, or by sending an email to info@sopto.com. For more info, please browse our website.