• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 288
  • Last Modified:

Site-to-site VPN on Domain Controllers

Earlier I asked a question about geographically distributed domain controllers:
http://www.experts-exchange.com/Networking/Protocols/DNS/Q_23506611.html#a21843736

After the question closed KCTS posted a comment regarding the potential usefulness of "site to site VPN." I would like to know the typical uses for site-to-site VPN, especially in the scenario I described earlier.

I am guessing this is a means of assuring secure connectivity between two servers without exposing their ports to the open Internet. It will help if someone can give me a refresher course on the means by which VPN does its magic.  

It will help if someone can supply me with links regarding how to set up site-to-site VPN on servers. Finally, if there are common mistakes to avoid, please let me know what they are.

Thanks so much.

0
kennethfine
Asked:
kennethfine
  • 3
  • 3
1 Solution
 
Brian PiercePhotographerCommented:
If your routers support hardware VPN themselves (some do - some  don't), it would be worth using that in my opinion, if not then you can set-up Windows to provide the VPN. There are some articles on this at
http://technet.microsoft.com/en-gb/network/bb545442.aspx
and a discussion at
http://www.microsoft.com/technet/community/chats/trans/windowsNET/wnet0107.mspx
0
 
kennethfineAuthor Commented:
I have ordered this:
http://www.buy.com/prod/netgear-prosafe-dual-wan-gigabit-vpn-firewall-4-x-10-100-1000base-t/q/loc/101/205877562.html

It is a firewall device. I believe this offers the hardware VPN capabilities you're describing, yes?
0
 
kennethfineAuthor Commented:
hmmm although one thing I'm contemplating is that this VPN functionality will need to be on both ends of the connection, and I don't have two of these gadgets. Is this compliant with a standard? In other words, if I have an in-hardware VPN implementation on one end and a windows-provided VPN on the other will it play nice?
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
Brian PiercePhotographerCommented:
I'm not familiar with this product, but it would seem to offer hardware VPN and it would make sense to use it - It you have one at each site, then connecting them should be straight forward.
0
 
kennethfineAuthor Commented:
What if I have windows-provided VPN on one end and hardware on another? do they adhere to a compatible standard? or?
0
 
Brian PiercePhotographerCommented:
In theory yes...
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now