Solved

How to add remote member server 2008 R2

Posted on 2014-10-28
9
209 Views
Last Modified: 2014-10-31
I'm installing a Windows 2008 R2 virtual server at a remote location (RL), at DRFortress.

That server will be our mail server for clients at the office location (OL).

Our DC is located at OL.

Are there key steps I need do to get up running safely? Things I have in mind:

How to join domain at OL
How to setup Windows 2008 Firewall
Did I miss anything?
0
Comment
Question by:NVIT
  • 5
  • 4
9 Comments
 
LVL 32

Accepted Solution

by:
Rodney Barnhardt earned 500 total points
Comment Utility
If you are creating a DR site as you have indicated, then you will need more than just one server at the remote site. If you are intending on creating an Exchange failover DAG environment, then you would also need to have a domain controller at the site that is also a GC. Exchange requires a GC located in the same site where the Exchange server resides. If it is a DR site, then I would expect you would have a private VPN type tunnel configured from your office location to the remote location. There are also other things to consider, such as certificates for that site if your plan includes running live from there in the event your primary site is either unavailable or has been lost. I may have misunderstood what you are planning, but if not, then you have additional planning that needs to be done.
0
 
LVL 23

Author Comment

by:NVIT
Comment Utility
I appreciate your help,  Rodney.

The server hosts MDaemon. It is a simple program,  nothing complex like Exchange.
Basically,  we're moving that server for DR purposes.

Our ISP is including  a dedicated virtual circuit to the server.

Thanks for the reminder on the certificate.
0
 
LVL 23

Author Comment

by:NVIT
Comment Utility
Eventually,  we'd like to move our file server,  also. So that everything is at DRFortress.
0
 
LVL 32

Assisted Solution

by:Rodney Barnhardt
Rodney Barnhardt earned 500 total points
Comment Utility
In that case, I would go ahead and create a site with a DC located there. You should still be able to join the domain as long as there is a tunnel between the two subnets and routing is enabled. You would just need to ensure that you set the current DC manually in the DNS server IP settings. As long as you can ping the DC, you should be able to join it without a problem.
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 23

Author Comment

by:NVIT
Comment Utility
"...create a site with a DC located there"
OK. Do you know if making the same server a DC is ok? I mean, acceptable and or safe?

"...routing is enabled"
Would that be at one or both locations? Is that a simple setting?

"...set the current DC manually in the DNS server IP settings"
Do you mean the TCP/IP v4 properties of the NIC, i.e. "Use the following DNS server addresses"?

"As long as you can ping the DC..."
How can I do that if the DC is behind a hardware firewall w/ NAT?

As you can see, I've never done this before. Thank you for your patience.
0
 
LVL 32

Assisted Solution

by:Rodney Barnhardt
Rodney Barnhardt earned 500 total points
Comment Utility
Does your ISP handle your firewalls? If so, then they will probably create a VPN tunnel between the two locations. They should also make the traffic between the sites routable from both directions.

It generally is not recommended to run email on the same server as a DC. Although MS does this with SBS server. Generally, it is a higher risk for hacking, viruses, etc.

Yes, in the TCP\IP settings, ensure the DC is set as the DNS server before trying to join it.

If you have a VPN tunnel set up between the two firewalls, it allows internal traffic on both sides to pass through on all ports.
0
 
LVL 23

Author Comment

by:NVIT
Comment Utility
"Does your ISP handle your firewalls?"
Do you mean the firewall at DRF location? Yes, it will include a monthly firewall option.

At the office, I control the sonicwall.

"It generally is not recommended to run email on the same server as a DC"
OK. Looks like we need to add a one-time cost for another Server license plus a monthly VM cost for the DC.
0
 
LVL 32

Assisted Solution

by:Rodney Barnhardt
Rodney Barnhardt earned 500 total points
Comment Utility
I would think you could work with them to create a tunnel. Not sure of you model, but here are the instructions.

http://thebeagle.itgroove.net/2013/10/19/sonicwall-site-to-site-vpn-the-easy-way/
0
 
LVL 23

Author Comment

by:NVIT
Comment Utility
Thanks, Rodney. I'll put this to good use. Aloha!
0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now