Custom software developer. IT consultant. Geek.
Deploying Windows Small Business Server 2008
My notes from today’s Microsoft Partner Program webcast…
Requirements
Requirements for primary server
| Processor | 64-bit only, 2GHz minimum, maximum of 4 physical sockets (no limit on the number of cores) |
| Memory | 4GB RAM minimum. 32GB RAM maximum. |
| OS Drive Partition | 60GB minimum. |
| DVD-ROM | Bootable from system BIOS |
| Network Adapter | 1 x 100Mbps Ethernet adapteber |
| Monitor / video adapter | Minimum 1024×768 |
| Network devices | Router that supports IPv4 NAT |
| Internet Connection | Required |
| Firewall | External firewall required |
Requirements for second server (if you’re running SBS2008 Premium Edition)
| Processor | 2GHz (can be x86 OR x64) |
| Memory | 2GB RAM minimum. 32GB RAM maximum. |
| OS Partition | 10GB minimum. 40GB recommended. |
To enable backup, you need minimum of 1 external drive (this must be a separate physical disk from any of the disks holding any of the SBS components / data).
Installation planning, and creating the Answer File
Microsoft provides a Windows Small Business Server 2008 Installation Worksheet.
The new Answer File Tools allows you to streamline the installation, and make your installations consistent. Allows options for whether to do installation attended or unattended, time zone, ewhether to install OneCare for Server and ForeFront for Exchange, fully qualified internal domain name, network settings, root certification authority name, etc. To run, Insert SBS2008 DVD1 on Windows XP or Vista and run SBSAfg.exe.
When you are MIGRATING to SBS2008, you MUST use the Answer File Tool. The tool will guide you through the process.
You can use the Answer File while doing either an OEM or Manual install. Simply load unattended.xml file onto a USB Key.
Clients must be on Windows XP Business SP2 (or higher) or Windows Vista Business / Ultimate.
Preparing the network
When you are ready to deploy, configure your network such that your router/firewall is configured as 192.168.x.1, and that your SBS2008 machine is configured as 192.168.x.2.
The “Connect to the Internet” wizard will look for a router at 192.168.x.1 and 192.168.x.254. If it finds the router, it verifies NAT functionality to make sure it can connect to the Internet. Then it configures DHCP on SBS, and requests the router to turn off DHCP. The resulting DHCP on SBS2008 is configured to be almost identical to the DHCP scope that was configured on the router.
If SBS2008 cannot automatically configure your router, you must (1) disable DHCP on your router, and (2) forward the following ports to 19.168.x.2:
- SMTP – TCP 25
- HTTP – TCP 80
- HTTPS – TCP 443
- HTTPS for SharePoint – TCP 987
- VPN – TCP 1723
- Note that port 4125 is NO LONGER NEEDED, as terminal services now goes through TS Gateway, which transfers traffic across port 443
Windows SBS installation will fail if the following conditions exist:
- The computer doesn’t have a NIC
- There is no link light
- The computer is not connected to a local router
- The computer is connected directly to the Internet and getting an Internet address instead of a local address
Windows SBS Installation – After the first phase (baseline setup) is complete
The first step that you are prompted for is to confirm that the date, time, and timezone are correct (important for server migrations).
Next, you are prompted to go online and get any critical updates. This includes any updates that they put out to improve the installation process, as well as any security or performance related patches.
The next thing that runs is the networking discovery, which will attempt to connect out through the router, try to auto-configure the network, etc. If it can’t configure the router (or if you haven’t forwarded the ports yourself), it won’t go out and get the latest updates.
Next screens prompt for information about the business (name, address, etc), the server name and internal domain name (if running with an answer file, it also prompts you for FQDN, which lets you specify an extension other than .local), and network administrator name / username / password.
You are then prompted for whether you want to install Windows Live OneCare for Server and/or Microsoft Forefront Security for Exchange Server. Both of these are 120-day trial versions.
All information you entered is then confirmed, as the server name and internal domain name cannot be changed after the installation is complete. This is not shown if you are using an unattended answer file.
Installation is then performed, and if all is successful you receive a “Successful installation” screen.
Sometimes there may be minor issues, which will be reported in an “Installation Issues” window. Each issue has a help topic associated with it to walk you through resolving the issue.
Connect to the Internet Wizard (CTIW)
Detects the presence of a DHCP server and requests that you turn it off.
Detects existing routers.
Configures the network.
Detects and Internet connection.
Internet Address Management Wizard
Launch Partners: GoDaddy, Register.com, eNomCentral.
Allows you to purchase a domain name and automatically configure DNS with the appropriate records. Keeps those records up to date over time. Also manages Dynamic DNS for your environment (if necessary) and will update your IP address at the registrar. Configures mail.domain.com, www.domain.com, and remote.domain.com.
Automatically configures: Outlook Anywehre, Exchange, Remote Web Workplace, Mobile Device connectivity, Certificates.
Configure Internet Mail Wizard
Can configure your mail to go out through a smart host, which is useful if you are on a dynamic IP address, so your email is not flagged as spam.
Move Data Wizards
By default, everything gets installed onto Drive 0. You can then move the data onto a different drive after installation. Microsoft recommends separating application and user data from the system drive, using the storage migration tools that are available after setup. RAID 1 recommended for system drive, and RAID 1 or RAID 5 for user data drive.
Backup and Storage page, Storage tab provides information about all of the drives, available space, etc.
There are a series of tasks on the right side of the screen that allow you to move the Microsoft Exchange Server data, Windows SharePoint Services data, Users’ shared data, User’s redirected documents, and Windows Update Repository data.
The interface prompts you to back up your data before it does any data moving.
Read more posts from John R. Pattison about Windows Small Business Server 2008
| Print article | This entry was posted by John Pattison on August 21, 2008 at 4:01 pm, and is filed under Windows Small Business Server 2008. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site. |
about 1 year ago
Thanks, This is a nice summary. I was hoping to find a list of recommended routers. My current SBS 2003 box was connected directly to the internet. Bummer to find out I needed a router. So I connected it to my vonage router. Worked fine after that, but what happened to using 2 nics?
about 1 year ago
Tim,
Microsoft found that very few people were actually using SBS as a router to the Internet. Most of them were using a dedicated hardware device. Ther are so many nice hardware based routers that certainly are a better choice for 95% of small businesses that would be deploying Small Business Server. I tend to use a lot of WatchGuard’s entry-line routers if I need to set up a VPN, want to have firewall-level antivirus, etc. If I just simply need a router, something like a Linksys WRT54G works out fine.
One other comment… if you get Windows Small Business Server 2008 Premium Edition, you get a second license of Windows Server to run on a separte machine. You could use that second machine to run a software-based firewall if you want.
Good luck!
about 1 year ago
hi john,
i am not clear as to why SBS requires an administrator to disable DHCP on the router.
about 1 year ago
SBS2008 has to run the DHCP server because clients need to use its DNS Servers (that’s how Active Directory resolves server roles). So if you used your router’s DHCP server, it would be telling the client computers to use the DNS servers it gets from your ISP. And you can only run one DHCP server at a time on a subnet, so the one on your router would have to be turned off.
I am not positive, but I believe that SBS2008 can automatically turn off the DHCP server on certain routers. But certainly if it can’t turn off the DHCP server for you, it will remind you to do it yourself.
about 1 year ago
Thanks so much for the prompt reply!
Makes more sense to me now…but what if I manually enter the SBS IP address to the DNS entries on the client computers.
I will still have to turn DHCP off on the router because the fix it wizards will not run later on…
Yes I also think SBS is able to switch off a router’s DHCP server.
Thanks again!
about 1 year ago
can you still use a service like open dns with sbs 2008?
about 1 year ago
Anthony,
I can’t think of any problem using Open DNS with SBS 2008. You would just need to go into the DNS management console and configure your server with the proper forwarders to relay external DNS requests through OpenDNS instead of using root hints.
Best of luck,
John R. Pattison
about 1 year ago
Hi John,
I am pulling my hair out with the connect to internet wizard in SBS 2008. Here is my problem. I connect to the internet with my Dlink 615 Router. When I run the wizard for sbs 2008 to connect to the internet it asks me to turn off my dhcp server on the router. So I login to 192.168.0.1 and turn it off. Then I run the connect to internet wizard again and it says it cannot find a router, so the only way it seems it can find it is if it is turned off? Have you ever come across this?
Thank you
about 12 months ago
I ran into that problem but it was because i also had a wireless router connected as well. Once i disconnected that it found my main router and was able to complete the connection wizard.
about 10 months ago
Trying to access the sql server data on the second server via vpn. Is there a procedure for implmenting this?
about 10 months ago
For Steve I was having the same problem. Found it was caused by AVG anti virus installed on the server.
about 7 months ago
I am deploying sbs 2008 in a old windows 2000 network and it has a unix machine on the network and it uses a 221.21.21.0 subnet and as im working thru this configuration i finding that sbs will not allow you to use any other subnet but 192.168.1.0 is there a work around for this problem.
about 7 months ago
John great site thanks. I have a question. I would like to disable DHCP server on SBS 2008 long enough to get some things configured before calling files from the old server. Is this possible? Is it a good idea? I know that I may run into problems if I try to connect the new server to the network while the old server is still running if they both try to manage DHCP.
about 5 months ago
I need help in resolving these issues: I have 2 new servers with SBS 2008 Installation package. I connected both servers to a router and each has an IP address. I used the first dvd 64 bit for the first server and used a fourth dvd which is 64 bit labelled for additional server for the second server. After the installation, the second server is not shown in the MyBusiness ……..SBSServer folder in the first server. I am unable to join the second server to the domain. I have gone through the installations instructions about SBS installation of second server at the Microsoft support links. I have read these from A-Z and followed the steps indicted. I will like someone to give me suggestion on how to resolve these problems. I have resolved DNS issue with the first server. I am using 192.168.0.1 and 192.168.0.2 as IPs. Subnet is 255.255.255.0, Gateway as 192.168.0.10
When I use nslookup, it points to the first server with its IP.