Routing, NT, & RIP

Although many networks that employ Windows NT Server operate in one domain that runs on one network, many clients must run on multiple networks. When IP is the protocol of choice, interconnecting multiple IP subnetworks requires routers. You probably know about hardware routers, but did you know that NT Server 4.0 can function as a software-based router? In this article, we explain the difference between bridges and routers, and the differences between using hardware routers and using NT Server as a software-based router. Then, we show you how to set up an NT server with more than one NIC as a software-based router. Along the way, we explain how Routing Information Protocol (RIP) works, and how to read an RIP routing table.

Bridges and Routers: What's the Difference?
Although the number of computers and LANs in business use continues to rise, the average number of hosts attached to a LAN is decreasing. LAN performance degrades as the number of hosts attached to the LAN rises. When too many attached hosts cause LAN performance to become sluggish, you can use any of several methods to improve the LAN's performance. One such method is to divide the LAN to create two networks. You can connect divided LANs using a bridge or a router. Both bridges and routers segment networks and filter and forward data, but they differ in operation and capability. You can understand the differences between a bridge and a router by examining the addresses each uses to do its job.

Host computers that are connected to a LAN and use TCP/IP have two addresses: a LAN media access control (MAC) address and an IP address. In terms of the Open Systems Interconnection (OSI) reference model, MAC is similar to data-link layer (layer 2) and facilitates error-free communication between devices on a LAN. MAC addresses are flat; that is, their assignment is random, and system intruders can't derive routing or location information from a MAC address. MAC addresses are burned into LAN NICs at the time of manufacture; most MAC addresses are 48 bits long and represented by a hexadecimal value.

In contrast to MAC, IP resides at the OSI network layer (layer 3) and routes packets through a network or across a series of subnetworks. On the LAN, a MAC frame transports an IP packet. IP addresses are hierarchical, which means that some portion of the address identifies a network (i.e., the Network Identifier—NET_ID). Routers use an address' identifier portion to route the packet. All IP hosts on a given network have the same NET_ID. An analogy highlighting the difference between MAC and IP addresses might be this: Your Social Security number (MAC address) uniquely identifies you but not your location, whereas your telephone number (IP address) uniquely identifies you and lets the telephone company network route telephone calls to your location.

Bridges operate using MAC addresses. Bridges forward frames from LAN to LAN to let multiple physically separate LAN segments operate as one network. In a transparent bridge environment (usually associated with Ethernet LANs), bridges must learn the location of all stations on the network and forward frames based on routing tables. If a bridge doesn't recognize the MAC address of a destination station, the bridge broadcasts the frame throughout the network. Routers are more intelligent devices than bridges and use the network layer address (i.e., IP) to route packets, letting several logically distinct networks communicate with one another. A network layer protocol such as IP handles its routing function by examining a routing table; a routing protocol populates the routing table with information. Bridges don't scale well to very large networks, nor can you use a bridge as a customer interface to the Internet.

Software-based Routers
Let's assume that you want to connect two or more IP subnets with a router. A hardware router is the preferred solution if your network is large or if you require a high-speed connection to the Internet. Router hardware, software, memory, and bus components move packets at high speed, and routers are modestly priced. You can purchase hardware routers from Cisco, Nortel (Bay Networks), 3Com, and other vendors. In some cases, however, you can use a software-based router with the capabilities of NT Server.

Several reasons exist for trying a software-based router solution that uses NT. One reason is that an NT system that functions as the router connection between a small network and the Internet eliminates the necessity to learn another OS interface and gain the expertise necessary to maintain and administer a traditional router. In addition, a site might choose to build a small special-purpose LAN with just a few devices attached. In such a case, a router would be a relatively large expense, and overkill to boot. Finally, an NT server that two local subnets can access is the best choice for linking the subnets. The server can simply attach to both networks to create a dual-homed environment.

Configuring an NT Server as a Software-based Router
The first step in setting up an NT server as a software-based router is to install at least two NICs in the server. The second step is to configure the cards. From the Network applet in Control Panel, select the Protocols tab, and click Properties to bring up the Microsoft TCP/IP Properties page. On the IP Address tab, which Screen 1 shows, select each of your network cards in turn, and enter the appropriate IP address information for each card in the fields below the Specify an IP address button. You need to define only one default gateway for each server-router, so you need to provide the default gateway address for only one of your NICs. You can leave the Default Gateway field blank for the other cards. (Alternatively, you can define additional default gateways for each NIC after clicking the Advanced button.) After you enter addressing information for each NIC, open the DNS, WINS Address, DHCP Relay, and Routing tabs and enter the appropriate information.

With two NICs, you can physically attach an NT server system to two networks; the system can be a member of both networks and might forward packets. Figure 1 shows one NT server system connecting two LANs. If you check the Enable IP Forwarding check box on the Routing tab, as Screen 2 shows, hosts on either LAN can access hosts on the other network. The GOLEM server can act as a router and accept packets from one network and forward them to the other. However, in a dual-homed environment in which an NT server system acts solely as a print or file server, the two LANs can access the server, but the server can't forward packets from one LAN to the other. A client on the 192.168.88.0 network accesses the GOLEM server via the NIC at 192.168.88.1, and a client on the 192.168.99.0 network accesses GOLEM via the NIC at 192.168.99.7.

If you want to route packets between the two networks, the server must have a routing table that contains information telling IP how to forward packets. You create and maintain routing tables on a static or dynamic basis. The system software automatically creates static routing tables when you install NICs. Static routing tables don't change in response to network conditions (such as traffic load or link status); therefore, routes remain the same until a systems administrator changes them. A routing protocol creates and maintains dynamic routing tables; NT Server uses RIP as its IP routing protocol. (You can find more information about the first version of RIP—RIP1—in Request for Comments—RFC 1058 and about RIP2 in RFC 2453.) To install RIP on your NT server, open the Network applet in Control Panel, and select the Services tab. Click Add and select RIP for the Internet Protocol from the Select Network Service dialog box. You'll receive a prompt to insert your NT Server 4.0 installation CD-ROM. You don't need to configure any parameters, so your installation is complete after you close the Network applet and select the option to reboot the system.