Sharing a wireless internet connection through a server & router

[Andrew Smith]

OK so no one is going to try and communicate with a computer on the outside network so that's one problem out of the way. I'm not sharing files on the server to the outside network so that's OK as well right? I'll be sure to look at those properties for the wireless adaptor. Hey I'm just chuffed that it all works myself, big time!

Now I'm really going to throw the boat out here with this next question. I'd like to enable remote desktop connection on one of the computers on our network so that I can access it from home. Can this be done? I found a guide but given that there's the Trusts network and then ours... ARGH!

Anyway this is the guide... http://www.datamation.com/mowi/article.php/3805016/Set-Up-Your-Network-for-Many-Remote-Desktop-Connections.htm

Many thanks!

[+PeterUK MVC]

Clearly your NOT getting it, I have clearly explained the setup so I am not sure how else to go about it - yes it is a DOUBLE NAT! Because he does not control that Wireless network he is using for internet, and there are OTHER users on it!! I would have to assume a LOT, if they setup a /22 mask.

He has file shares on his SERVER that before where only shared with his boxes connected to his isolated router be it wired or wireless. So now he is leveraging the OPEN guest wireless network for internet access.. Why in the world would he want to use that network as his own via a bridge??

I agree with you double nat is normally not something you want to do.. But in this CASE, it is the best option because there could be hostiles on that 192.168.216.x/22 network. Now if he controlled that 216 network, and the clients that connected to it, and was ok with them having access to his shares, then sure bridge would be an option.

Yes if he so desired he could just bridge and let all his boxes get IPs from the UHGuest router - and now his boxes would be open to all the other possible 1000 other clients on that network.. You would hope that they atleast have Wireless Isolation on.. But if they did, then his wireless clients would not be able to talk to his other wireless clients.

This maintains his previous isolated network, while leveraging the GUEST network as path to the internet.

So setup a VPN on the server for access to the file shares or use a firewall or get another box to do the wireless and NIC bridge with ACL switch to block access to file shares ports or get some more bad boys so that wireless for internet wired for file shares or add another NIC in the PC's and another switch for file shares and the other NIC for internet on the other switch with the server doing the bridge with one NIC and wireless and another NIC for the file shares.

But ICS double NAT is cheap so we leave it at that.

[+BudMan MVC]

"I'm not sharing files on the server to the outside network"

So you undid the bindings on the wireless nic on your server?

"I'd like to enable remote desktop connection on one of the computers"

Not unless you had control of the hospital router at the NAT point to the internet, remote desktop not going to work. Your not going to be able to allow inbound unsolicited traffic in this sort of setup. You will have to use something like teamviewer or logmein -- they maintain a connection to the internet, and then you can remote in. I know teamviewer is free for noncommercial use - so don't see an issue with using it since your volunteer setup I thought that is what you said in the video.