Solved

Best way to remotely connect offices?

Posted on 2008-06-09
12
412 Views
Last Modified: 2013-11-21
Hi. I need to set up an environment that our branch offices can connect to our central office in California for an accounting software called SBT. Currently there are 7 workstations that connect to our server (Win 2003 server) for the software. A quick diagram of our network in CA is like this: T1 internet-> Linksys router(DHCP enabled) -> Win 2003 Server (Active Directory) -> Each workstation gets 192.168.1.XXX as an IP and shares internet.

The plan is to first make 3 workstations in Japan use the software at the same time. I know that Remote Desktop allows only 1 user at a time, so it's not gonna work for our project. What could be the best way to implement this plan? The possible plans that I can think of are:

1. The best way for us now:
I don't know if it's possible, but because we have already 7 workstations to connect to the software and thanks to the time zone difference, we can somehow make 3 workstations in Japan to connect to 3 different workstations in our central office. I know RDP uses port 3389, so this plan is only possible when the users in Japan could access throughout different ports. Is it possible to use 3 different ports in a router to send 3 requests from outside to 3 different workstation here? If so, this could be the best plan for us.

2. Second Option: VPN:
I've heard about it but have never used it. Would it be one of the best options in my situation? The only problem is that I have to limit the users from some of our resources in Central office. If you're famillia with VPN, please explain to me how to set up the network.

3. Third option:
This could be an ideal way, but if I can, I'd like to avoid it due to its cost and time.
Use Win 2003 Terminal Server and buy CALS for the users in Japan. Set up the Terminal Server in central office. Again, the actual number of remote users are at most 3, so I'd like to pass this one, if I could have another option.

These are some of the possible deployment plans that I can think of. Please advise me which way to go. If there's a better way, please let me know also. Although I understand some network techniques, I'm not a network engineer, so please explain to me using normal English :-) Thanks in advance
0
Comment
Question by:ychousa
  • 7
  • 5
12 Comments
 
LVL 4

Accepted Solution

by:
albuitra earned 250 total points
Comment Utility
IMHO the best solution is the VPN.
You can use a linux solution, or even a HW solution
The linksys router maybe used like VPN server, and the PCs in Japan like clients
In linux you can use something openvpn in CA, and the clients in Japan
http://www.openvpn.org/
In CA you use the network 192.168.1.XXX/24 and in Japan use 192.168.2.XXX/24
Check the documentation
In a VPN you could use printers, VoIP, file sharing, etc
0
 

Author Comment

by:ychousa
Comment Utility
Hi, albuitra. Thanks for your reply.
The users in Japan should be able to access accounting software ONLY. I don't want them to use our whole network resources. Would it be possible?

And also, I've learned that each router has different number of "tunnels." Can I think if a router has 5 tunnels, 5 users can access concurrently?
0
 
LVL 4

Expert Comment

by:albuitra
Comment Utility
First, using a firewall you can filter the access to only a group of resources.
Second, you are wrong.
With Japan you only use ONE tunnel for ALL conecctions.
So, if you can have 5 tunnels, you could have something like this:
1. CA <--> Japan
2. CA <--> London
3. CA <--> Boston
4. CA <--> Employee with portatil in Brasil
5. CA <--> Boss from home
In VPN you have 2 subnets. The option Site to PC, iscounted like subnet to Subnet the only one PC
0
 

Author Comment

by:ychousa
Comment Utility
So, 3 users in Japan in one office connects to our network at the same time, or not, using VPN? This is the fundamental question to do all of this.And if so, do they also have to have a Linksys brand router?
0
 
LVL 4

Expert Comment

by:albuitra
Comment Utility
If the users in Japan use a linksys router, they only use one tunnel, and connect the 3 at same time or even 10 at same time.
But i don't know the model exact of linksys to say if it supports firewall and restrict the access to only the accounting software
0
 

Author Comment

by:ychousa
Comment Utility
OK. So, 3 users can access IF THEY USE a linksys router, right? But do they have to have the same brand, linksys?  Or, is it possible to connect using a different brand?

And hopefully the last question, do they have to have a router? What if a one-man operating office in Germany (without a router) wants to access our network using a laptop? Is there a software for that, or how does it work?

Thanks a bunch!
0
Promote certifications in your email signature

Has your company recently won an award or achieved a certification? They'll no doubt want to show it off. Email signature images used to promote certifications & awards can instantly establish credibility with a recipient and provide you with numerous benefits.

 
LVL 4

Expert Comment

by:albuitra
Comment Utility
Depends
Some models of routers can interconnect with other brands, but others only with linksys.
The best to only use linksys is that you don't have to understand two manuals, only one.

For the employe in Germany, he can use a VPN software without a router and connect to your router office
0
 

Author Comment

by:ychousa
Comment Utility
Fantastic! Thank you very much, albuitra. I'll accept your answers. Lastly, could you recommend some good VPN softwares? Are there free ones?
0
 
LVL 4

Expert Comment

by:albuitra
Comment Utility
If you need strong security, you could think in use Linux in CA and Japan, and use ssl-keys of 2048 bits.
If not, you could use PPTP VPN in linksys
http://www.opendrivers.com/driver/236185/linksys-vpn-router-quickvpn-utility-1.0.39-free-download.html
http://www.velocityreviews.com/forums/t37827-linksys-amp-vpn-client.html
0
 

Author Comment

by:ychousa
Comment Utility
Oh. I forgot to ask one. Sorry... In Japan, they have their own network, consisting of approx. 15 people. How can they incorporate this VPN with their own network? Do they use a VPN software?
0
 

Author Comment

by:ychousa
Comment Utility
Forget my last question. I got the answers from a site. They need to enable IPSec Passthrough and use a VPN software, like the ones you linked, right? Thanks again!
0
 

Author Closing Comment

by:ychousa
Comment Utility
Thanks again!
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Some of you may have heard that SonicWALL has finally released an app for iOS devices giving us long awaited connectivity for our iPhone's, iPod's, and iPad's. This guide is just a quick rundown on how to get up and running quickly using the app. …
If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now