tips54
asked on
working with remote office over vpn
Hello.
I manage an office of 40 users running SBS 2008 in one office. We just bought another building to move to in the next few months. In the meantime I have to configure connection between the two offices before we start moving inventory.
I wanted to get some suggestions on the best and cost affective way to connect the two locations?
This is what my plan was please let me know what I'm missing.
I have a Watchguard firewall X750 box at the current location and I have old watchguard I had replaced.
I am ordering cable service for the new location with one static IP. Configure the old watchguard for the New location and created a vpn between the two watchguard boxes and connect the locations that way.
I am also sending a member server from my the existing sbs network to the new location to allow users to authenticate from there to be able to access the ERP system from the new location.
What I am not sure of is would I configure DHCP on the member server at the new location an printers? please let me know what I may be missing or just a new plan b/c mine would not work?
Thank you in advance.
I manage an office of 40 users running SBS 2008 in one office. We just bought another building to move to in the next few months. In the meantime I have to configure connection between the two offices before we start moving inventory.
I wanted to get some suggestions on the best and cost affective way to connect the two locations?
This is what my plan was please let me know what I'm missing.
I have a Watchguard firewall X750 box at the current location and I have old watchguard I had replaced.
I am ordering cable service for the new location with one static IP. Configure the old watchguard for the New location and created a vpn between the two watchguard boxes and connect the locations that way.
I am also sending a member server from my the existing sbs network to the new location to allow users to authenticate from there to be able to access the ERP system from the new location.
What I am not sure of is would I configure DHCP on the member server at the new location an printers? please let me know what I may be missing or just a new plan b/c mine would not work?
Thank you in advance.
I can recommend you to use different subnets for your offices. You can use DHCP in new office, but in router you should deny DHCP requests (ports 67 & 68) between networks through your VPN connection.
or you can use same subnet with different network but try to avoid dhcp
example(192.1681.1.0 for new location and 192.168.2.0 for old location)
example(192.1681.1.0 for new location and 192.168.2.0 for old location)
ASKER
Thank you all.
How about authentication? I had someone tell me I should copy a copy of the catalogue on the new server to allow the users to authenticate locally instead of over the network.
although this cable is guaranteed 15Meg down / 3meg up
Any thoughts on that?
How about authentication? I had someone tell me I should copy a copy of the catalogue on the new server to allow the users to authenticate locally instead of over the network.
although this cable is guaranteed 15Meg down / 3meg up
Any thoughts on that?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I just found out that my Watchguard III 500 model can't be used temporarily at the new location as I thought. Can anyone recommend an expensive hardware vpn I can easily configure at the new location to create a tunnel to connect the two offices together?
Location (A) has WG 750e - location (B) should have ???
Location (A) has WG 750e - location (B) should have ???
fortigate....first preference
juniper ...second prference(SRX not SSG)
juniper ...second prference(SRX not SSG)
ASKER
I ended up configuring two watchguard equipments and so far so good.
ASKER
thank you.
just avoid configure DHCP(use private ip static)
and for RDC/RDP you require cal /ts client license ...that you need to purchase if you don't have.