How Much Speed for a VPN?
This is a sequel to the question/situation I asked about several weeks ago under the title. "Cannot map remote share via Sonicwall SSLVPN". That problem was solved by the use of static IP's at both ends of the VPN and the use of the proper domain name in the VPN login.
But now we have issues with efficiency of the connection(speed and reliability of file operations across the VPN).
To recap, the store runs a win2k3 server as a pdc with several workstations at the store location. The gateway is a Sonicwall TZ210 The WAN is fixed IP on a DSL connection. The other location (the shop) has two workstations using NetExtender VPN client, also through a fixed IP DSL connection. The work all the workstations do is manipulation of Excel spreadsheets, Word docs, and Quickbooks files, all stored on the server.
Now we have beeen told that even a cable DSL would not be fast enough to properly open and close the files without corrupting them, especially if more than one person is working on them at the same time. Instead it has been recommended to use RDC or GotoMyPC to an extra workstation. Is this all true, is the only way to get functionality through RDC and if so, what's the point of a VPN? If there is a speed that will make this setup feasible, what kind of service and speed would be necessary, short of FIOS?
But now we have issues with efficiency of the connection(speed and reliability of file operations across the VPN).
To recap, the store runs a win2k3 server as a pdc with several workstations at the store location. The gateway is a Sonicwall TZ210 The WAN is fixed IP on a DSL connection. The other location (the shop) has two workstations using NetExtender VPN client, also through a fixed IP DSL connection. The work all the workstations do is manipulation of Excel spreadsheets, Word docs, and Quickbooks files, all stored on the server.
Now we have beeen told that even a cable DSL would not be fast enough to properly open and close the files without corrupting them, especially if more than one person is working on them at the same time. Instead it has been recommended to use RDC or GotoMyPC to an extra workstation. Is this all true, is the only way to get functionality through RDC and if so, what's the point of a VPN? If there is a speed that will make this setup feasible, what kind of service and speed would be necessary, short of FIOS?
Hi,
Remote Desktop is not the same as a VPN - in Windows 2008/2008 R2 a TS Gateway component is available which provides much of the functionality of a VPN by encaspulating the RDP traffic in HTTPS but it's not a true VPN.
You can look at a much cheaper Remote Desktop alternative - TSPlus (http://www.tsplus.net/products.php) - you can even run this on an XP or Windows 7 desktop and provice remote desktop or remote app access for more than 1 user concurrently.
Regards,
RobMobility.
Remote Desktop is not the same as a VPN - in Windows 2008/2008 R2 a TS Gateway component is available which provides much of the functionality of a VPN by encaspulating the RDP traffic in HTTPS but it's not a true VPN.
You can look at a much cheaper Remote Desktop alternative - TSPlus (http://www.tsplus.net/products.php) - you can even run this on an XP or Windows 7 desktop and provice remote desktop or remote app access for more than 1 user concurrently.
Regards,
RobMobility.
Hi,
Another alternative would be to use something like AirDocs (http://www.airdocs.com/default.aspx)
Regards,
RobMobility.
Another alternative would be to use something like AirDocs (http://www.airdocs.com/default.aspx)
Regards,
RobMobility.
ASKER
The areas where the clients locatons are, are served by AT&T, and no, they do not have FIOS. The only available alternatie is Time Warner Cable. The speed that is available from AT&T is 2mbps down and 512kbps up. So, given those choices, what minimum speed should I look for? We've already spent considerable money on makng the VPN work and I'd like to stick with it, if possible.
Hi,
The VPN is merely providing a secure connection into your environment - file access is usually designed for 10 Mbps, 100 Mbps or 1000 Mbps connections, not 2 Mbps with potential issues which could result in disconnections.
The TSPlus route would enable you to deploy remote applications (i.e you are not running a complete desktop, just the application [Excel] to the desktops of the users at your remote site) - they would double click on the icon, authenticate and would be running what appears to be local excel. What they are acually running is a remote excel application on the same LAN as the files - i.e. no errors and potential corruption.
A 3 user licence for TSPlus is $75.00 - far less than corrupted files, the effort resolve that and considerably less than Microsoft RD running on Windows 2008 R2. There is no licencing server for applications either.
Regards,
RobMobility.
The VPN is merely providing a secure connection into your environment - file access is usually designed for 10 Mbps, 100 Mbps or 1000 Mbps connections, not 2 Mbps with potential issues which could result in disconnections.
The TSPlus route would enable you to deploy remote applications (i.e you are not running a complete desktop, just the application [Excel] to the desktops of the users at your remote site) - they would double click on the icon, authenticate and would be running what appears to be local excel. What they are acually running is a remote excel application on the same LAN as the files - i.e. no errors and potential corruption.
A 3 user licence for TSPlus is $75.00 - far less than corrupted files, the effort resolve that and considerably less than Microsoft RD running on Windows 2008 R2. There is no licencing server for applications either.
Regards,
RobMobility.
By comparison 512KB verses a LAN connection is crawling, and probably why you are having an issue. TIme Warner offers a DIA service that has 5MB up and down, which should be adequate to solve your problem. There is also a wideband service that offers 50MB x 5MB. Don't know the costs but you could explore these options. We use cable services at serveral sites and they prove to be faster than a T1.
ASKER
So, thismeans that I would have to spend $ to add additonal workstations at the server site( the store), one each for the two shop users and for the TSPlus? This sound like the GoToMyPC setup that they were using. Is 10mbps the minimum I should be looking for?
If you want to use the shares, I would go for the fastest speed you can reasonably afford. Your other choice is to have the excel and word documents donwloaded to the local pc and then modified there. Quickbooks is another issue, since you can't do that. It seems your best option is to up the line speed, and then continue to use the VPN connection.
As a test, if you have someone work with a two line spreadsheet, or a short one page word document, does the problem occur? Who/how did you diagnose the file corruption and attribute it to line speed?
Altenately you could use the RDC over the VPN, and that should work for you. But, only one person at a time will be able to connect to the server this way to use the desktop. Since you only have two remote pc's, with a little coordination this might work for you.
As a test, if you have someone work with a two line spreadsheet, or a short one page word document, does the problem occur? Who/how did you diagnose the file corruption and attribute it to line speed?
Altenately you could use the RDC over the VPN, and that should work for you. But, only one person at a time will be able to connect to the server this way to use the desktop. Since you only have two remote pc's, with a little coordination this might work for you.
ASKER
O just looked up Time Warner and the fastest they have in Los Angeles is 10x2 mbps. Will this cut it??
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Hi,
If this is a domestic service, be aware of the following:
1. Usually bandwidth is heavily contended
2. Not all services support VPNs - that's a business service not domestic
3. Pcket Shaping - increaingly, this is being done and HTTP traffic is prioritised - this would impact your VPN
4. Supplier may see you using a VPN and degrade or terminate your service - after all, it's a domestic service?
5. No SLA - i.e. should your link go down, you're stuck and you have to wait for them to fix it. Business services usually have contracted response and fix times.
Regards,
RobMobility.
6.
If this is a domestic service, be aware of the following:
1. Usually bandwidth is heavily contended
2. Not all services support VPNs - that's a business service not domestic
3. Pcket Shaping - increaingly, this is being done and HTTP traffic is prioritised - this would impact your VPN
4. Supplier may see you using a VPN and degrade or terminate your service - after all, it's a domestic service?
5. No SLA - i.e. should your link go down, you're stuck and you have to wait for them to fix it. Business services usually have contracted response and fix times.
Regards,
RobMobility.
6.
ASKER
No, the present service they use is a business service and they have been using GoToMyPC for one user. The excel files are not that big, but the Quickbooks files are big. So is 10mbps down and 2mbps up on the Time Warner business service going to be adequate?
Do I correctly understand then, that the TSPlus would require only one extra PC at the store to be accessed by the two users from the shop simultaneusly if needed?
Do I correctly understand then, that the TSPlus would require only one extra PC at the store to be accessed by the two users from the shop simultaneusly if needed?
Hi,
That is correct - 1 PC (check this document for suggested specs - http://tsplus.net/TSplusUserGuide.pdf) would allow you to support simultaneous access from your 2 remote users.
They offer a 15 day trial download - give it a try?
Regards,
RobMobility.
That is correct - 1 PC (check this document for suggested specs - http://tsplus.net/TSplusUserGuide.pdf) would allow you to support simultaneous access from your 2 remote users.
They offer a 15 day trial download - give it a try?
Regards,
RobMobility.
ASKER
Tried TSPlus on the store workstation as a server . In order to access it from the outside while sitting in front of the server, I used Wyse PocketCloud as a client on my iPad2. But, alas, no joy. Wyse spins for a while and then says it cannot connect to server. I tried to add firewall and NAT rules to the Sonicwall, but that made no difference. It seems you cannot specify actual port numbers in port forwarding for the Sonicwall, only services.Maybe I'm missing something. Any ideas, anyone?
Hi,
Can you forward Remote Desktop services?
Regards,
RobMobiity
Can you forward Remote Desktop services?
Regards,
RobMobiity
ASKER
Yes, there are several rules already in the Sonicwall. The clients have been using GotoMYPC sucessfully, and I tried using those rules by turning off GoToMyPC and assigniing the TSPlus server to those ports, but that does not work. They have a rule to RDC to their server, which I can do from outside, but when I tried it with Wyse PocketCloud, that didn't work either. The error msg is always the same,"couldnot connect to server"/ Is there any way to monitor the connecton process?
ASKER
Ok, Finally got it working, firewall rules and all. But I have a question. It seems that the program can support more than one simultaneous connection, but the connections are all to the same session. This presents a potential for conflicting commands and battling keyboards. Is there a way to have multiple connections to same workstation/TSPlusServer and have each connection logged into a different session or user?
Hi,
Just set it up quickly and if I log in with 2 different accounts, I am running 2 different instances - i.e. I see a different session.
Regards,
RobMobility.
Just set it up quickly and if I log in with 2 different accounts, I am running 2 different instances - i.e. I see a different session.
Regards,
RobMobility.
Hi,
I have enabled the allow 1 open session per user option.
Regards,
RobMobility.
I have enabled the allow 1 open session per user option.
Regards,
RobMobility.
ASKER
Well, all is now well. TSPlus worked very well, even with DSL connections on both ends. hanks RobMobility. BTW, the license fee for 2-5 users is $129, not $75. But it still cheaper than GoToMyPC.
Thanks for al your help
Thanks for al your help
Hi,
Thanks for the update.
My reason for quoting $75.00 was that was what was stated for a 3 user licence on the 'store' page:
3 user license: $75 (around 50€)
Regards,
RobMobility.
Thanks for the update.
My reason for quoting $75.00 was that was what was stated for a 3 user licence on the 'store' page:
3 user license: $75 (around 50€)
Regards,
RobMobility.
With that said, what is the speed of your DSL circuits?