Solved

Setting up connection between 2 offices using Win Server 2003

Posted on 2006-07-10
10
183 Views
Last Modified: 2010-04-18
Hi experts.  I have been commanded by the higher-ups to configure a server with Windows Server 2003 Standard and send it to our branch office in Phoenix.  This server will need to persistently connect to our Denver office's server to give our Phoenix employees full access to our Denver network, and full access for our Denver employees to the Phoenix employee PCs.  Currently, the Denver server is also Windows Server 2003 and is currently our file server, backup server and VPN server.

I began researching site-to-site VPN connections, but then my boss told me to do it using static routes, saying it would be much easier.  I'm not sure I know the difference between the two scenarious, and I must say I am very confused by how to go about it using different subnets, etc.  My experience with this is limited, but I am a quick learner.

Could someone outline the basic steps by which I would go about doing this?  I have only one NIC in each server and am not sure whether I'd need two NICs in either of them.  Anything you could tell me to lead me in the right direction would be great!
0
Comment
Question by:philodendrin
  • 5
  • 5
10 Comments
 
LVL 33

Expert Comment

by:NJComputerNetworks
ID: 17073824
Sounds like you will have to research what kind of WAN connection you have between Denver and Phoenix.  If this is already a secure PRIVATE WAN connection, there is no need for additional VPN.  However, if this connection is not secure, then you will have to add VPN security to your servers.  However, this is rare...

0
 

Author Comment

by:philodendrin
ID: 17073881
Hi NJComputer Networks, thanks for your response.  Right now there is no secure private WAN connection; only the Internet lies between the offices.  We have static IPs on each side.  Do you ask because a simple static route would have no good security like a VPN would?  If so, what steps are involved in setting up that persistent VPN connection?
0
 
LVL 33

Expert Comment

by:NJComputerNetworks
ID: 17073926
what type of firewall do you use right now in each site?
0
 

Author Comment

by:philodendrin
ID: 17074044
We have a Cisco 1750 firewall in the Denver (main) office and I believe either no firewall in Phoenix or a Netopia 3300-ENT router which also serves as a firewall (not 100% sure about Phoenix).
0
 
LVL 33

Expert Comment

by:NJComputerNetworks
ID: 17074263
It is preferred and more secure to use your firewall device as the mechanism to create a secure VPN tunnel between sites.   If this is not possible, you can use the Windows Technology (but there is overhead and generally your will not get the performance and level of security that you would get through a hardware VPN)

Site to site VPN...  http://www.watchguard.com/products/edgex50.asp  <--- for example, you would need a device like this in both sites.
0
Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

 

Author Comment

by:philodendrin
ID: 17074386
Could you give me an idea of how the Windows Technology works?  I suspect no one will here will vote Yay for a hardware VPN, and unfortunately security has never been a high priority at this company.  Since they have hired me, I have implemented more security in 2 months than they have had in years.

I have read site-to-site VPN articles from Microsoft, but get confused because I don't understand the "big picture" very well (and MS isn't great at explaining the Big Picture, either).  I have never before used Demand-Dial Interfaces and the like.  Right now,our Denver server has RRAS configured for users to connect via VPN, and the Phoenix Netopia router already connects to us persistently via VPN.  Using that current scenario, could I configure this new server for Phoenix in a way which would take advantage of the Netopia router's connection via VPN?  Mainly, what I am trying to accomplish is seeing each office's computers in "My Network Places" and very little else.

Am I confusing the issue now?  I am too confused to even know!
0
 
LVL 33

Accepted Solution

by:
NJComputerNetworks earned 125 total points
ID: 17074693
0
 
LVL 33

Expert Comment

by:NJComputerNetworks
ID: 17074705
Hardware site to site VPN is very easy to implement... Software Windows VPN, requires an understanding of the three articles listed above  (This is somewhat more complicated)
0
 

Author Comment

by:philodendrin
ID: 17074754
I was afraid you'd say that!  Thanks for the articles.  I will check them out and respond tomorrow morning - I'm off to a meeting that will, sadly, last until this evening.
0
 

Author Comment

by:philodendrin
ID: 17081445
NJ, busy days are here, so I've decided to award you the points and move on with my life.  Those articles you sent were great (don't know how I never found the first 2 myself) and I think I can take it from here.  Thanks very much!
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

I guess it is not common knowledge to most Wintel engineers/administrators: If you have an SNMP-based monitoring system in your environment (and it's common to have SNMP or Syslog) it's reasonably easy to enable monitoring of the Windows Event logs,…
This may not be a text book method to resolve VSS backup issues but it seemed to have worked on few of the Windows 2003 servers we had issues while performing a Volume Shadow Copy backup. If you have issues while performing a shadow copy backup usin…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now