Mark
Thu May 27 10:28:50 CDT 2004
I agree it is expensive but I was just looking for an easy
option and I'm an amateur at this!
All the information, files, mail etc will be stored at the
main site so everything will go via vpn. There will
probably be no more than 10 users at the second site so
nothing too big! I have read one of the articles on
isaserver.org and it is excellent in explaining how it all
works but if I didn't install ISA at the second site, what
could I do?
The connections are both broadband 512 so nothing too
great.
Is the other way of doing it, getting a shared broadband
internet connection, placing a firewall router/hub in and
then each user VPN connecting. If it is, that sounds
great, I just need to know how?
If you could explain to me how I could do it cheaper and
easier then I would be eternally grateful
thanks for all your time Javier
Mark
>-----Original Message-----
>Hi Mark!
>
>If you ask me... I wouldn't install ISA on the 2nd office
and simply do the
>same setup as the other post (ISA is kind-of expensive).
However, if you
>really want to use ISA there are several excellent
articles in isaserver.org
>dealing with a site-to-site vpn between 2 ISA boxes.
>
>What is the purpose of the remote server? File/print
server? Strickly
>speaking you don't need a 2nd server at all for doing
what you want...
>however, having another server might be useful for
storing files, ect. that
>don't need to travel over the VPN. Also, a 2nd DC might
prove useful if the
>internet is down (but if everything that you need is at
the 1st site then
>this doesn't help you at all). Finally, you need to
consider a that normal
>broadband connection (thus the VPN link) are not usually
very fast... so
>what exactly the users need to access in the 1st office?
Mail? Files? a
>database? How many users are we talking about? What kind
of connection you
>have in each site?
>
>I'm giving you some questions for you to think about...
I'm sure you have
>considered most of them, but it never hurts to put them
in black and
>white.:-)
>
>What you want to do is certainly possible... is just a
matter of what is the
>best and most reliable way to acomplish it.
>
>Cheers,
>
>--
>Javier [SBS MVP]
>
><< SBS ROCKS !!! >>
>
>"Mark" <anonymous@discussions.microsoft.com> wrote in
message
>news:136ad01c443c1$5cd887a0$a101280a@phx.gbl...
>> The setup at the minute is there is no setup!
>>
>> I have looked at that thread and the diagram that he has
>> done is pretty much what I would like to do. I need the
>> users at the remote site to be able to access everything
>> at the main site and for users at the main site to be
>> able to take there laptops to the second site and
connect
>> as normal.
>>
>> I did some reading last night and I think the way
forward
>> is to connect the two offices using ISA server VPN.
>> So at the second office I would have
>>
>> Internet
>> |
>> ISA Server
>> |
>> Hub
>> |
>> Workstations
>>
>> I think I will have to install the ISA server at the
>> second site and after going through the ISA VPN wizard,
>> join it to the main domain. Will I need a DC at the
>> second site or will it use the main one through the
link?
>>
>> Then once this is all set up (and I am very old ;) ) a
>> user from the main site should be able to take their
>> laptop to the second site and connect as normal?!?
>>
>> Thanks for all your help Javier, your helping to keep me
>> sane!
>>
>> Mark
>>
>> >-----Original Message-----
>> >No need for apologies... I'm half asleep today, so I'm
>> dumber than the usual
>> >:-)
>> >
>> >I was kind of confused with your setup... I was
thinking
>> something among the
>> >lines of this post:
>> >
http://groups.google.com/groups?hl=en&lr=&ie=UTF-
>> 8&c2coff=1&selm=2eac5d02.0405131207.6d547a8d%
>> 40posting.google.com
>> >
>> >But, the part I'm missing here is how is 2nd office
>> connected to the 1st
>> >one. What is the layout in the 2nd office? You connect
>> the server directly
>> >to the SBS box (via VPN)?
>> >
>> >2nd Office
>> >
>> > Internet
>> > |
>> > Server
>> > |
>> > Hub/Switch
>> > |
>> > Workstations
>> >
>> >or maybe:
>> >
>> > Internet
>> > |
>> > Firewall/Router
>> > |
>> > Switch/Hub
>> > |
>> >-----------------
>> >| |
>> >Server Workstations
>> >
>> >--
>> >Javier [SBS MVP]
>> >
>> ><< SBS ROCKS !!! >>
>> >
>> >"Mark" <anonymous@discussions.microsoft.com> wrote in
>> message
>> >news:12c7201c44344$3e5b1450$a301280a@phx.gbl...
>> >> OK sorry to confuse you, im confused enough already!
>> >>
>> >> What we have at present is a main office with sbs2k.
>> We
>> >> also have a second site that at present has no IT
>> >> installed. What I would like to do is connect the
two
>> >> sites so that a user from the main office could go to
>> the
>> >> second office and plug in there laptop and work as
>> >> normal. If thats possible?
>> >>
>> >> I was planning on placing a server at the second
office
>> >> with just DHCP and RRAS installed, no DC, and getting
>> the
>> >> two servers to talk through RRAS which I have
acheived.
>> >>
>> >> Maybe this is the incorrect way of doing this as I
have
>> >> never done it before. If you know how it should be
>> done,
>> >> please let me know as I have no other ideas!
>> >>
>> >> thanks
>> >>
>> >> Mark
>> >>>-----Original Message-----
>> >>>I'm having some trouble understanding your setup.
Maybe
>> >> a little diagram
>> >>>would help.
>> >>>
>> >>>If you are doing VPN server-2-server... could you
check
>> >> that the PC has the
>> >>>remote server is acting as the gateway?
>> >>>
>> >>>--
>> >>>Javier [SBS MVP]
>> >>>
>> >>><< SBS ROCKS !!! >>
>> >>>
>> >>>"Mark" <anonymous@discussions.microsoft.com> wrote in
>> >> message
>> >>>news:12e1901c44329$ef6a0780$a101280a@phx.gbl...
>> >>>> Javier
>> >>>>
>> >>>> I have since entered the static routes with a
subnet
>> >> mask
>> >>>> of 255.255.255.255 whcih appears to work. I can
now
>> >> ping
>> >>>> each server from the other but I am unable to plug
a
>> PC
>> >>>> configured for the main office into the remote
office
>> >> hub
>> >>>> and connect to the network. What have I missed!?!?
>> >>>>
>> >>>> Mark
>> >>>>
>> >>>>
>> >>>>>-----Original Message-----
>> >>>>>Ok Javier
>> >>>>>
>> >>>>>The main office server is 192.168.100.1,
>> 255.255.255.0
>> >>>>>and the remote office is 172.10.0.1, 255.255.0.0
>> >>>>>
>> >>>>>I'm just starting to set this up, the remote office
>> has
>> >>>>>had nothing in it until now.
>> >>>>>Maybe you could answer a couple of other questions?
>> >>>>>
>> >>>>>The server for the remote office, what does it have
>> to
>> >>>>>have installed on it? At present it has DHCP and
RRAS
>> >>>> but
>> >>>>>nothing else. It is Server 2003. Does it need to
be a
>> >>>>>DC? Do I have to import it into the main domain?
>> >>>>>At the minute it's just a standalone machine. I
plan
>> >> on
>> >>>>>installing ISA at some point as the firewall.
>> >>>>>
>> >>>>>I got the two connected using 0.0.0.0 as the static
>> >>>> route
>> >>>>>but this stopped us being able to browse at the
main
>> >>>> site?
>> >>>>>
>> >>>>>All I want this server at the remote office to do
is
>> to
>> >>>>>act as a VPN connection to the main office so that
>> if a
>> >>>>>mobile user goes to the remote location, they can
>> plug
>> >>>>>there laptop in and access the network as if they
>> were
>> >>>> at
>> >>>>>the main office.
>> >>>>>I hope you can help Javier and thanks
>> >>>>>
>> >>>>>Mark
>> >>>>>>-----Original Message-----
>> >>>>>>Give us the whole stuff IP/masks of both servers
and
>> >>>>>router (VPN).
>> >>>>>>
>> >>>>>>--
>> >>>>>>Javier [SBS MVP]
>> >>>>>>
>> >>>>>><< SBS ROCKS !!! >>
>> >>>>>>
>> >>>>>>"Mark" <anonymous@discussions.microsoft.com> wrote
>> in
>> >>>>>message
>> >>>>>>news:128ad01c44310$21a70c30$a401280a@phx.gbl...
>> >>>>>>> Hi all
>> >>>>>>>
>> >>>>>>> I am trying to add a static route on a vpn so
that
>> >> the
>> >>>>>>> two servers will talk nicely to each other but
>> when
>> >> i
>> >>>>>tey
>> >>>>>>> and enter the static ip, i get an error
>> >>>>>>>
>> >>>>>>> The Network mask entered is not valid.
>> >>>>>>> The destination address cannot be more specfic
>> than
>> >>>> the
>> >>>>>>> network mask.
>> >>>>>>>
>> >>>>>>> The IP i am entering is 192.168.100.1 and the
>> >> network
>> >>>>>>> mask is 255.255.255.0
>> >>>>>>> That is what my lan NIC is set at so why does it
>> not
>> >>>>>work?
>> >>>>>>>
>> >>>>>>> Please help, I'm having a bad enough day as it
>> is!!!
>> >>>>>>>
>> >>>>>>> thanks
>> >>>>>>> Mark
>> >>>>>>
>> >>>>>>
>> >>>>>>.
>> >>>>>>
>> >>>>>.
>> >>>>>
>> >>>
>> >>>
>> >>>.
>> >>>
>> >
>> >
>> >.
>> >
>
>
>.
>