Solved

Connecting to our foreign network help?

Posted on 2004-08-16
13
314 Views
Last Modified: 2010-04-11
Hi

We are based in the uk and have two offices here and an office in mallorca. We are looking to set up a network so we can see the computers of workers in other offices and share files/ folders etc. What steps would you take to create the network (ie type of connection required, type of network, security issues etc)?

Our machines are mixed win98, 2k and xp. We have win2k server in uk sited and nt4 in mallorca. We are willing to upgrade servers if necessary but not yet able to upgrade the workstations.


Any help would be greatly appreciated
0
Comment
Question by:cyjazzman
  • 8
  • 5
13 Comments
 
LVL 15

Expert Comment

by:Yan_west
ID: 11809744
I would make a permanent VPN Tunnel betweem the 2 offices, using a Cisco PIX firewall. this would bring both of your network togetter over the internet, and this, very securely.

Depending on the size of your 2 networks, I would recomment different model.<<

Here is the complete list of cisco pix firewall models.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/
0
 
LVL 15

Expert Comment

by:Yan_west
ID: 11809754

Network A (pix)----(Secure Tunnel) INTERNET (Secure Tunnel)----(pix) NetworkB
0
 

Author Comment

by:cyjazzman
ID: 11809825
Hi and thanks for quick reply

We actually have three networks

two uk offices have 120 and 180 workstations respectively and mallorca office has 50.

Do you configure the vpn using the firewall or on the servers we have?

Would this enable us to control the internet access for the overseas office from here and also be able to make configuration changes to their serv
0
 
LVL 15

Expert Comment

by:Yan_west
ID: 11809826
0
 
LVL 15

Expert Comment

by:Yan_west
ID: 11809865
You could use as many pix as you want, to create as many tunnels as you want (depending on the model)..

You could configure remote servers via Remote access, or if you integrate AD tools for all domain in a centralized location.

I would setup 2 pix 515 at your 2 office location (120-180 PCS) and a Pix 506e at your 50 computer office.

The tunnel is exclusively configured via the firewalls (pix)
0
 
LVL 15

Expert Comment

by:Yan_west
ID: 11809924
This is a very complex solution in any case, and if you have no one that is specialized in this at your office, I would contact a solution provider to analyze your network. Even if we give you a complete solution here, only use it as a guideline.
0
What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

 
LVL 15

Expert Comment

by:Yan_west
ID: 11809940
Network 1    Tunnel
                 ------------
                   Internet    ----Network 3                                                      
                 ------------
                  Tunnel
Network 2
0
 

Author Comment

by:cyjazzman
ID: 11810157
I only have experience of LAN's so bear with me while I ask some questions.

After reading the set up guides for the pix firewalls it doesn't seem too complex.

We already have internal LAN all configured correctly at each location and have 3u space in our racks. Each office is connected to the internet via a gateway with a static public ip address.

It really seems like the pix are the only other hardware we need am i right?

I assume that once the vpn is established then workstations from other offices will be visible on the network?

0
 

Author Comment

by:cyjazzman
ID: 11810177
Also we are having voip solution installed in our uk offices. With a vpn would we be able toextend the voip coverage to the foreign network? it would save a fortune in call charges!!!
0
 
LVL 15

Expert Comment

by:Yan_west
ID: 11810308
The pix is a complete Firewall solution, probably that it will replace your current firewall / Internet gateway. You can't go wrong with cisco. Yes it is the only piece of hardware you need.

Check this out:

http://www.experts-exchange.com/Hardware/Routers/Q_21077361.html

Also, check this list of article:

http://labmice.techtarget.com/networking/vpn.htm
0
 

Author Comment

by:cyjazzman
ID: 11810998
Ok, configuring the pix shouldn't be too hardr for our inhouse guys.

Then all i need to do to authenticate remote computers on our domain is give them the ip of our dns server in their network configuration?

They should then appear as any other local machine on our domain right?
0
 
LVL 15

Accepted Solution

by:
Yan_west earned 500 total points
ID: 11811133
You will have access to the computers at the other end, you will be able to Map network drive from the command line, or via logging script, but you may not see them in the network Neighborhood tho.. I know I can't but my domain is fully functionnal. everything will be working.

If you right click on network place and click search for computer, and type in the address, it will show tho..
0
 

Author Comment

by:cyjazzman
ID: 11811151
Excellent!!

Thanks for all of your help, you are an absolute star.
0

Featured Post

Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

Join & Write a Comment

Suggested Solutions

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now