Solved

Windows 2003 Server and remote users

Posted on 2011-02-24
8
271 Views
Last Modified: 2012-05-11
Hello all,
Okay this one is a little strange and I have never worked with something like this.
One of my new clients has a Windows 2003 server in the home office, which only has two PCs.
They have three remote users that never come into the home office.  These users do not have offices and live in different parts of the country and they travel alot.
Obviously they do not share files and documents, which they should, including their Quickbooks data.
To me the perfect ideal would be to have all the files saved on the file server and that backed up nightly (and of course an offsite backup), but I have never worked with remote users that do not have a remote office so a VPN could be setup.
How would you do this?  Would you just do a terminal services connection?
What about security for something like this?
Thanks.
0
Comment
Question by:chillepod
  • 4
  • 3
8 Comments
 
LVL 2

Assisted Solution

by:Jerod Sanderson
Jerod Sanderson earned 175 total points
ID: 34973210
If they have the CAL's for Terminal services that would be the best way since TS is only passing screen shots of the server desktop they are using.  a VPN setup is ok as long as they are not pulling large amounts of data.  for example a 10mb Quickbooks data  file could take minutes to load on the local workstation.  
0
 
LVL 38

Accepted Solution

by:
Hypercat (Deb) earned 325 total points
ID: 34973679
I agree, Terminal Services would be the best solution in the circumstances. There are some costs, though. In addition to having to purchase terminal server CALs, I'm pretty sure they would need to be using Quickbooks Enterprise in order to run it successfully on a terminal server without concerns about potential data corruption and problems with multiple concurrent users. The ideal setup for security purposes would be to do both - VPN plus terminal services.  The VPN connection provides the extra security by creating an encrypted tunnel and the TS connection provides much speedier response time than a straight VPN connection.
0
 

Author Comment

by:chillepod
ID: 34973814
Okay, but how can I create a VPN connection for traveling users?  I understand from site-to-site where there is an appliance (such as Cisco) on each end to do the VPN.
So would I want to get a Cisco appliance and use the VPN software on the PCs then do TS through that?
Thanks.
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 34973868
You could set up the Windows server as a Remote Access server; this is probably the easiest way so that you don't have to worry about distributing a proprietary VPN client.  This will use the built-in VPN client that comes with every Windows machine.  Here are a couple of different articles that might be helpful:

http://technet.microsoft.com/en-us/library/cc736357(WS.10).aspx

http://www.techrepublic.com/article/configure-a-windows-server-2003-vpn-on-the-server-side/5805260
0
 
LVL 38

Assisted Solution

by:Hypercat (Deb)
Hypercat (Deb) earned 325 total points
ID: 34973898
Once the VPN server is set up you then would have the clients connect using the Windows remote access client.  The only other gotcha here is that on the server side, they have to have a static public IP address. Most home users don't have that, so if your client has a residential account with his ISP, he would probably have to pay extra for a static IP address.
0
 

Author Comment

by:chillepod
ID: 34973926
Okay I am confused by the static public IP address.
That is just for the home office and not for the remote users, correct?
0
 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 34974020
Yes - for the remote users to be able to connect to the home office, the home office needs to have a static public IP address. Otherwise the remote users wouldn't have any way to know how to connect to the home office.
0
 

Author Closing Comment

by:chillepod
ID: 34974237
What I was looking for.  Thank you
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
GPO Access denied in AD 12 50
home folder path for users 4 71
many domain users as service accounts - not documented 2 70
Event ID: 7023 / Source: Service Control Manager 4 116
This may not be a text book method to resolve VSS backup issues but it seemed to have worked on few of the Windows 2003 servers we had issues while performing a Volume Shadow Copy backup. If you have issues while performing a shadow copy backup usin…
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question