Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

How to add remote member server 2008 R2

Posted on 2014-10-28
9
Medium Priority
?
245 Views
Last Modified: 2014-10-31
I'm installing a Windows 2008 R2 virtual server at a remote location (RL), at DRFortress.

That server will be our mail server for clients at the office location (OL).

Our DC is located at OL.

Are there key steps I need do to get up running safely? Things I have in mind:

How to join domain at OL
How to setup Windows 2008 Firewall
Did I miss anything?
0
Comment
Question by:NVIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 32

Accepted Solution

by:
Rodney Barnhardt earned 2000 total points
ID: 40410748
If you are creating a DR site as you have indicated, then you will need more than just one server at the remote site. If you are intending on creating an Exchange failover DAG environment, then you would also need to have a domain controller at the site that is also a GC. Exchange requires a GC located in the same site where the Exchange server resides. If it is a DR site, then I would expect you would have a private VPN type tunnel configured from your office location to the remote location. There are also other things to consider, such as certificates for that site if your plan includes running live from there in the event your primary site is either unavailable or has been lost. I may have misunderstood what you are planning, but if not, then you have additional planning that needs to be done.
0
 
LVL 25

Author Comment

by:NVIT
ID: 40410841
I appreciate your help,  Rodney.

The server hosts MDaemon. It is a simple program,  nothing complex like Exchange.
Basically,  we're moving that server for DR purposes.

Our ISP is including  a dedicated virtual circuit to the server.

Thanks for the reminder on the certificate.
0
 
LVL 25

Author Comment

by:NVIT
ID: 40410848
Eventually,  we'd like to move our file server,  also. So that everything is at DRFortress.
0
ATEN's HDBaseT Presentation at InfoComm 2017

Hear ATEN Product Manager YT Liang review HDBaseT technology, highlighting ATEN’s latest solutions as they relate to real-world applications during her presentation at the HDBaseT booth at InfoComm 2017.

 
LVL 32

Assisted Solution

by:Rodney Barnhardt
Rodney Barnhardt earned 2000 total points
ID: 40411123
In that case, I would go ahead and create a site with a DC located there. You should still be able to join the domain as long as there is a tunnel between the two subnets and routing is enabled. You would just need to ensure that you set the current DC manually in the DNS server IP settings. As long as you can ping the DC, you should be able to join it without a problem.
0
 
LVL 25

Author Comment

by:NVIT
ID: 40411300
"...create a site with a DC located there"
OK. Do you know if making the same server a DC is ok? I mean, acceptable and or safe?

"...routing is enabled"
Would that be at one or both locations? Is that a simple setting?

"...set the current DC manually in the DNS server IP settings"
Do you mean the TCP/IP v4 properties of the NIC, i.e. "Use the following DNS server addresses"?

"As long as you can ping the DC..."
How can I do that if the DC is behind a hardware firewall w/ NAT?

As you can see, I've never done this before. Thank you for your patience.
0
 
LVL 32

Assisted Solution

by:Rodney Barnhardt
Rodney Barnhardt earned 2000 total points
ID: 40411329
Does your ISP handle your firewalls? If so, then they will probably create a VPN tunnel between the two locations. They should also make the traffic between the sites routable from both directions.

It generally is not recommended to run email on the same server as a DC. Although MS does this with SBS server. Generally, it is a higher risk for hacking, viruses, etc.

Yes, in the TCP\IP settings, ensure the DC is set as the DNS server before trying to join it.

If you have a VPN tunnel set up between the two firewalls, it allows internal traffic on both sides to pass through on all ports.
0
 
LVL 25

Author Comment

by:NVIT
ID: 40411401
"Does your ISP handle your firewalls?"
Do you mean the firewall at DRF location? Yes, it will include a monthly firewall option.

At the office, I control the sonicwall.

"It generally is not recommended to run email on the same server as a DC"
OK. Looks like we need to add a one-time cost for another Server license plus a monthly VM cost for the DC.
0
 
LVL 32

Assisted Solution

by:Rodney Barnhardt
Rodney Barnhardt earned 2000 total points
ID: 40411441
I would think you could work with them to create a tunnel. Not sure of you model, but here are the instructions.

http://thebeagle.itgroove.net/2013/10/19/sonicwall-site-to-site-vpn-the-easy-way/
0
 
LVL 25

Author Comment

by:NVIT
ID: 40416487
Thanks, Rodney. I'll put this to good use. Aloha!
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A procedure for exporting installed hotfix details of remote computers using powershell
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Suggested Courses

704 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question