Link to home
Start Free TrialLog in
Avatar of damothedude
damothedude

asked on

What are the steps to set up new offices Lan windows firewall router exchange and connect via wan to each other

Hi , This is an interview question that i was asked recently and would like some views on the steps to assess situation and steps to resolve problem.

"We have multiple branches width indivdual lans that all communicate via WAN for emails and document sharing etc.  There is a new branch, tell me the steps you would follow in setting up the new network, what information would you gather , hardware/software used use and how you would ensure security and correct permissions"

I know and understand various technologies and have worked in a network environment with Windows Server 2003 so use as much techy info as you like. Please detail info about how could Active Directory, Group policies, security, DNS, and exchanges be managed accross multiple sites be implemented, as i know there seems to be multiple ways of doing things and i am getting confused which is the best path. Include info on why you should implement something one way rather than another

Please note this is the first question posted here so, give feedback if i am using the best approach or awarding enough points

Cheers
Damo
ASKER CERTIFIED SOLUTION
Avatar of tim1731
tim1731

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of damothedude
damothedude

ASKER

Hi, thanks for the info, thats the problem , interview wise , its just an open ended question, not much info given but let me make some assumptions

1. 20 users on each site , using xp , widtch a printer for each 5 people
2. confidential info needs to be shared and permission and security is a must
3. It is a busy environment and needs to be reliable with plently of backup, speed
4. it has a dsl connection
5. There is a server for the remote site for local file storage and profiles

So i have a choice between 1 domain, where the remote site is an OU and contains sub OU's containing the sites stations and users and auth/group pol/ permissions over a tunnel

or
2 domains and the remote is a child domain width its own AD that synz with the HQ active directory so that all
Group policies

6 Both sites have to connect to the internet so let me assume they have a high speed dsl connection and work via VPN, so
they need a router and a firewall. Let me assume that it has a cisco router and a windows based firewall 'checkpoint'

7 They have 'ms exchange' : you can connect to the 1 exchnage server at HQ via the vpn or an exchange server at each location and the exchange servers synz over the vpn

8. I can get the dhcp set up locally on each site or make dhcp happen over the vpn witch one dhcp in the headquarters

9. There are a dns server on each site and each station points to the one closest first and then remotely to find a certain station

Ok thanks some more details , my problem i  understand a number of thing a bit but would like them put all together.  For the above points a have given 2 sides but you give me details why i would use one  than the other and why should i choose VPN over another tunnell protocol

Also should i consider having Document database functionality for examples the ability to check document in and out, or have a central file server that both sites can access

Thanks again

ps. i do not mind you tellling me if i am talking balls or off on the completly wrong direction

SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Nope, no info what so ever, its a very open question i assume to see if you understand the principles. Looked at the ishard looks interesting.

What about group policies and security accross the 2 domains, if the remote has a dc will the AD and group policies syzn if set up in the trust?

What if the company wanted to control the access to the web to reduce virus and misuse ,  should i create a filter on each site or one at HQ and route all http traffic via HQ

The same could go for spam for email access should i have a barracuda spam filter at HQ and let the remote exchange synz with HQ or have separate 2 barracuda

Cheers
Damo