Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win


Is a VPN the correct solution to my problem.

Posted on 2012-12-27
Medium Priority
Last Modified: 2012-12-27
I have been asked to look into a VPN solution for our SMB. It would have up to 5 users accessing at a time but usually only 1 or 2. My question is this.....Is a VPN the right solution for us as the work required is mostly database driven?  We have a decent ISP but the speeds in this area are terrible (DSL 20mb D / 2mb U).  Obviously our upload speed is not the greatest and my understanding is that both upload/download speeds are crucial. We are currently using remote desktop but my concern is that we are leaving ourselves open for attack.

Suggestions and/or comments are welcome. Thanks in advance.
Question by:gbinthehizzyhouse
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 77

Assisted Solution

by:Rob Williams
Rob Williams earned 700 total points
ID: 38725366
Probably not.  VPN's are not a good option for accessing databases, i.e. the application at the remote site and the data at the corporate site, due to the slow network performance.  The limiting factor is the upload speed at the corporate site.  Most database apps want >50mbps, and VPN's cannot achieve that.  As a result data corruption can often occur.

The better option is to set up a terminal server or a few PC that users can access over the Internet using Remote Desktop (RDP).  This will works very well even with very low bandwidth connections.
LVL 11

Accepted Solution

epichero22 earned 700 total points
ID: 38725370
VPN is secure, so no worries there.  What I would instead by concerned with is, as you said, the connected speeds, but namely the upload rate.

A business I manage is of similar size to yours, and two of the employees wanted to work from home on their SQL-driven database that resides at the office.  So I installed LogMeIn Hamachi as a VPN solution.  Once the connection was established, I installed the client-side software they use, but the results were terrible: just to load the program required 15 minutes of data connectivity.

A better solution was to have them remote into the server via Remote Desktop and over the VPN.  While it's not instantly responsive, it has worked adequately.  So I would say to try it out and measure the results based on your experimentation.
LVL 71

Assisted Solution

Qlemo earned 600 total points
ID: 38725389
With DB driven applications the best approach is to use Terminal Services. Exceptions are if only small amount of data is exchanged.

The main issue with a server-driven database engine are the request-response-roundtrip times, not the bandwidth. Since the Internet connection introduces significantly greater delays, and VPN adds to that, small packets for which the receiver has to wait to continue need a lot of time, and the performance is disastrous. SQL DBs and applications tend to have small queries, retrieving a subset of data, and ask for other data based on the results.

If your DB does not use a centrally running engine, but is client based, like Access, it is even worse, as the file operations will get slowed down to almost a halt. File seeks are not very efficient over VPN (or any other public WAN connection).

In opposition, having Terminal Server is effective, as only graphical commands will get transferred. Unless the graphic engine renders stuff different all the time, that is. Watching graphs that way isn't effective, for example.

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you thought ransomware was bad, think again! Doxware has the potential to be even more damaging.
Provide an easy one stop to quickly get the relevant information on common asked question on Ransomware in Expert Exchange.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question