VPN routing (Office Communications Server 2007 R2)
Posted on 2010-08-26
Hi, my current network setup is:
Main HQ connected to single branch office via 1 VPN tunnel.
At HQ we have SDSL 2mbit up/down
At Branch we have ADSL2+ 12mbit down / 768k up
We use Office Communications server internally. hosted at HQ
We have a coms PC at both sites, with Wide Angle webcams, for conferencing between the sites. We have had continued problems with packet loss, lag. Webcam freezing etc..
I've tried quite a lot to settle this down, used different PC's, used different webcams, replaced network cables/cards. gone as far as purchasing 2 brand new PC's to act as coms pc's at each end. Still to no avail.
The quality is perfect. I can confirm that on the HQ router there is no "MAIN" network traffic coming in or out (or very little, 10-15k) over the VPN tunnel I can see TX and RX of approx 50-60k a sec. Which seems about right for webcam use.
Now. combined that puts the overall upload out of the SDSL at say, 100k/sec, Receive of the SDSL at the same, say 100 maybe 120k.
this doesn't come close to capping either the TX or RX available on our line.
The connection at the branch site isn't taxed in the slightest on receive, but is at about 70-80% of maximum upload.
Sitting at HQ, we see the branch office webcam feed perfectly, no crackles, no lag, audio perfect, it's exactly as we'd expect it to be... however, branch site only see's a frozen screen or very laggy, they can however hear us perfectly. so audio is causing no problems.
I'm pulling my hair out!
I am waiting for a call back from our ISP as we speak because I was going to put in an addition ADSL2+ 8MB line at HQ, was going to use RRAS to route and data not intended for the VPN tunnels using the new 8MB line. Which would leave the SDSL line dedicated to serving the Branch site. Even this i'm not 100% sure will sort the problem though.
I was looking for some input on wether it was possible to route through different VPN tunnels to the same network... By that, I mean configuring a 2nd VPN tunnel from the new ADSL2+ line (also to the branch site.)
I would have 2 VPN tunnels into the same router at the branch, configured basically the same. firstly, is that even possible...
secondly, my intention was to specifically route traffic based on what actual PC the traffic is going too..
However, I would probably prefer to route traffic based on which port is being used to send the traffic.
as an example, for OCS, if I initiate a webcam conversation i'd want to try and send port 5061 out via ADSL2+ as opposed to SDSL.
Basically, I would very much like to use the SDSL line as a dedicated 24/7 backup line for transferring any backup data, SQL-T logs, serving files to branch etc, then use the ADSL2+ line at HQ for any downloads, WSUS updates, and potentially OCS communications.
I'm not even sure if this is a common question. I couldn't really find any viable information on multiple visits to google.
I want to be in a situation where we can have flawless webcam communications between HQ and Branch. I want to dedicate the SDSL line to more of a backup transport line, sending through file server backups overnight, etc.
Can anyone offer me some insight on this issue?
Thankyou, and sorry for the waffle of a post. Please ask if you need clarifcation on anything.