Configure a remote site in an SBS2003 domain using vpn tunnel between 2 firewalls

Posted on 2006-05-31
Last Modified: 2010-03-19
Network setup:

Main site:
SBS Server 2003 (is dhcp server), one nic, ip range 192.168.19.X, 30 clients

Remote site:
2 desktop pcs, ip range 192.168.20.x, firewall/router = dhcp server

Both sites are connected with a vpn tunnel between 2 SGS320 appliances.

At the remote sites clients can connect to exchange and network shares. They get their ip adresses from the SGS320, working ok.

I have troubles printing from main site to the remote site, think dns is not working properly. Can someone advice me how to setup this situation properly and secure?

At remote site i want to use the router/firewall as dhcp server.
Question by:kuvain

    Expert Comment

    Are you using ISA to connect the two sites or another firewall?

    Author Comment

    No, using a hardware vpn tunnel between the 2 appliances. The SGS320 appliance also function ad firewall.

    Author Comment

    I googled around a bit - in many articles people are setting op a second DC in remote office. This is not an option for me, I just want these two clients working perfect in the domain without installing another DC.

    Is this possible?
    LVL 5

    Accepted Solution

    In your VPN client look for the DNS settings and then hardcode in the DNS from your local machine...

    Expert Comment

    Is windows firewall enabled on your client pc's?  If so you might have to change your sbs server group policy to make the windows firewall allow access to both your local subnet and the remote one.

    Author Comment

    Thanks for the advices.

    The hardcoding of dns server is the only option, but I do want the clients to be configured through dhcp (sgs320 on remote site is now dhcp). Since i see no options to let this router hand out predefined dns server i think this is an impossible situation here.

    Firewalls are off as on all the client pcs.

    For now i configured the clients with dynamic ip adresses and static dns (pointing to sbsserver). All works well.

    Too bad i cant do everything with dhcp, read something about dhcp relaying but thats not possible with SGS230.

    Computerguy 107 took me back in to the right direction, points are his.

    thx everybody for the help

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    Some time ago I was asked to set up a web portal PC to put at our entrance. When customers arrive, they could see a webpage 'promoting' our company. So I tried to set up a windows 7 PC as a kiosk PC.......... I will spare you all the annoyances I…
    Hi All,  Recently I have installed and configured a Sonicwall NS220 in the network as a firewall and Internet access gateway. All was working fine until users started reporting that they cannot use the Cisco VPN client to connect to the customer'…
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now