We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

Small Business Network Design & Security

Medium Priority
1,104 Views
Last Modified: 2012-06-27
I'm setting up a network for a small business and would really appreciate any suggestions on how to do this in a secure and scalable way.

physical hardware:
(haven't bought any hardware yet, want to make sure they are good scalable choices)

Astaro Security Gateway 220 (firewall, proxy, ids/ips, remote access...)
Astaro AP10 Wireless AP (Add-on for ASG 220)
ESX Server1 (Main) Dell R710 -48GB RAM  -2 QuadCore Xeon Processors -6 HDDs Raid 5
ESX Server2 (Backup/Update Appliances) Dell T610 -20GB RAM  -2 QuadCore Xeon Processors -6 HDDs Raid 5
Rackable Cisco Router w/ACLs (need hardware recommendations)
Cisco Switch SR224G
Thin Clients (need hardware recommendations)
Dell Precision T3500 (x2)

Required Software:

SAS Statistical Software
MS Office
Revision Control/Digital Signature Software

Other Info:

Web Hosting/Email with Hosting Company (suggestions welcomed)
Secured Network Backup Hosting (to alleviate compliance requirements--suggestions welcomed)


I'm unsure about the best & most secure way to configure the pNICs, vSwitches, and VLANs
 Draft -Suggestions Greatly Appreciated
I would be very grateful for any suggestions/recommendations on how to do this in a secure scalable way. Thank you in advance for your help.

-Don
Comment
Watch Question

Andrew Hancock (VMware vExpert PRO / EE Fellow)VMware and Virtualization Consultant
CERTIFIED EXPERT
Fellow
Expert of the Year 2017

Commented:
What quickly I notice, no SAN (shared storage), for resilience, availability and scalability!
Andrew Hancock (VMware vExpert PRO / EE Fellow)VMware and Virtualization Consultant
CERTIFIED EXPERT
Fellow
Expert of the Year 2017

Commented:
email hosting - have a look at Microsoft BPOS

Thin Client hardware - Wyse.
Steve SmithHead of IT / IT Manager / IT Director
CERTIFIED EXPERT

Commented:
Web hosting - rackspace
Office 365 instead of office
-DK

Author

Commented:
RE: hanccocka
Good Catch, Thank You!
Would a separate partition/LUN on ESX Server1 be sufficient for Shared Storage ?
(e.g. LUN1-VMs, LUN2-SharedStorage --both 3disks each/raid 5)
Or do you recommend an actual physically separate SAN?

ESX Server2 will be doing VM Backups & Updates and will have a LUN for NAS

 I'm trying to keep cost down and don't think we need VMotion as we will be doing daily remote backups?

Microsoft BPOS looks great and having SharePoint would definitely be nice!

Thank you!
__________________

RE: sgsm81
Rackspace looks good since I won't need the extras provided by HostGator, Office 365 looks interesting, I need to check the system requirements for the SAS statistical software to make sure it's supported.

Thank you!
___________

For the physical NIC connections on the ESX servers, does that look okay?
Is the ESX#1 vSwitch with pNIC3 okay? Is ESX#2 vSwitch with pNIC1 look okay?

Any recommendations for VLANs & security,  should I use them?
VMware and Virtualization Consultant
CERTIFIED EXPERT
Fellow
Expert of the Year 2017
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
-DK

Author

Commented:
Thank you so much, It's been a while since my VMware class and your advice is very helpful.

I was originally planning on using ESXi (free edition) on both and backing up the data from ESX#1 to ESX#2 (using a free virtual appliance) and storing it in the NAS LUN and doing daily remote backups so that worst-case-scenario, we would only lose 1 day of data
....But after your suggestion, my original way could have been one of those 'when cheaper becomes more expensive' situations, so thank you...you may have saved me from a lot of costly problems in the future.

And thank you for the hardware & off-site backup recommendations.

I truly appreciate you taking the time to help me with this.

Thanks again,
Don
Andrew Hancock (VMware vExpert PRO / EE Fellow)VMware and Virtualization Consultant
CERTIFIED EXPERT
Fellow
Expert of the Year 2017

Commented:
Don

No problems, always here to advise, as well as the other VMware Experts.

Further information for you, using the FREE versions of ESXi, you will have problems backing up the virtual machines using the VMware APIs, using third party backup utilities, because the APIs are not available to the utilities in the free version of ESXi. So you would be wise to investigate VMware Essentials Kits for ESXi, or at least get basic licenses for ESXi, so you can at least backup the VMs, using e.g. Veeam Backup and Replication, which is approx $500 per processor, per ESX host server.

Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a free trial preview!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.