Gordon Tin
asked on
How should i plan the network for small branch office with only 5 pcs???
Dear experts
Main Office:
Network: 192.168.189.0/24
Using:Microsoft AD, DHCP, DNS
Using: Juniper N5GT
Bandwidth: ADSL 10M download & 1M upload bps
I will need to set up the branch office with 5 PCs. I am planning to VPN both office which i will connect N5GT to SSG5.
1.Is it a good idea (with only limited bandwidth) for me to set the SSG5 (branch Office) as a DHCP agent so PCs in the branch office can be served by DHCP server in the main office????????
2. Would i be able to serve the branch office using AD, DNS, Antivirus Servers in branch Office
Main Office:
Network: 192.168.189.0/24
Using:Microsoft AD, DHCP, DNS
Using: Juniper N5GT
Bandwidth: ADSL 10M download & 1M upload bps
I will need to set up the branch office with 5 PCs. I am planning to VPN both office which i will connect N5GT to SSG5.
1.Is it a good idea (with only limited bandwidth) for me to set the SSG5 (branch Office) as a DHCP agent so PCs in the branch office can be served by DHCP server in the main office????????
2. Would i be able to serve the branch office using AD, DNS, Antivirus Servers in branch Office
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I will set the branch office Netscreen to be the DHCP server at the beginning stage until Microsoft Server is ready to pick up the DHCP work.
I have the following questions regarding using SSG5 as DHCP server.
1. Do i have options in netscreen to provide DHCP service only for certain IP range.
2. For example, i have trust (192.168.1.0/24) & subinterface in trust (10.0.10.0/24).
Does Netscreen-SSG5 is capable of serving both networks?
Please kindly share yr expert experience.
I have the following questions regarding using SSG5 as DHCP server.
1. Do i have options in netscreen to provide DHCP service only for certain IP range.
2. For example, i have trust (192.168.1.0/24) & subinterface in trust (10.0.10.0/24).
Does Netscreen-SSG5 is capable of serving both networks?
Please kindly share yr expert experience.
For question 1: Yes.
For question 2: I do not know.
The branch box provides DHCP for the branch location. The tunnel back to the main office is in the static range of both boxes. And presumably the Server at the main location will be the DHCP server for the main location.
... Thinkpads_User
For question 2: I do not know.
The branch box provides DHCP for the branch location. The tunnel back to the main office is in the static range of both boxes. And presumably the Server at the main location will be the DHCP server for the main location.
... Thinkpads_User
ASKER
Let me revise my question...............
I am NOT trying to provide DHCP through the tunnel back to the main office.
2. For example, i have trust (10.10.189.0/24) & subinterface in trust (10.0.10.0/24).
Does Netscreen-SSG5 is capable of serving both networks?
Please kindly share yr expert experience. ..........................
I am NOT trying to provide DHCP through the tunnel back to the main office.
2. For example, i have trust (10.10.189.0/24) & subinterface in trust (10.0.10.0/24).
Does Netscreen-SSG5 is capable of serving both networks?
Please kindly share yr expert experience. ..........................
ASKER
ok Links
Now set up a tunnel between the two Netscreen devices and then branch office users have all the services they need from the head office server.
Be sure (since you are using ADSL) that you set the MTU in the routers at 1492. Default is 1500 and is not efficient for VPN.
... Thinkpads_User