Re: AD structure question
From: Bhargav Shukla (contanoctme_sp_at_ambhargavs.com)
Date: 04/02/04
- Next message: Ulf B. Simon-Weidner [MVP]: "Re: Insufficient priviledge to update scheme"
- Previous message: Ulf B. Simon-Weidner [MVP]: "Re: Using LDAP to make schema mods"
- In reply to: LB: "Re: AD structure question"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 2 Apr 2004 13:16:36 -0500
Where is your DDNS registering? To ISP DNS servers?
You can then create the connections from A to B using RRAS or site-to-site
ISA VPN tunnel. This will make your network A and B communicate to each
other and you be able to access all resources from one location to another.
Speed is always an issue. Depending on how much you expect to travel the
link, you can decide what speed you need or if what you have is enough. I
would not expect rolling out 70 MB software to all clients using GPO from A
and applying to all clients in A and B. You can create 2 sites and then use
site topology as well as DFS to use same GPO applying to all as well as
making software you deploy available on one of the local servers to each
site.
"LB" <lb@NOSPAM.nospam> wrote in message
news:eSJrFhNGEHA.3288@TK2MSFTNGP12.phx.gbl...
> IP address of the router is changing all the time and clients use DDNS
name
> (something like company.ddnsserver.com) to connect for example to our VPN
> servers. But VPN gives just access to share resources. GPO settings doesnt
> apply in this case, is it right? I cant manage clients computers in this
> case. That is why I was thinking to make computers in B members of company
> domain and make them log into domain using VPN. Will it work? Does it
affect
> to speed of network in A?
>
> "Bhargav Shukla" <contanoctme_sp@ambhargavs.com> wrote in message
> news:OBybgSNGEHA.1884@TK2MSFTNGP11.phx.gbl...
> > If you are in Metro or somewhere in populated place, you can definately
> find
> > a better ISP for business. Prices are going lower everyday. And changing
> ISP
> > should not affect you bad as you are depending on dynamic IP's right
now.
> It
> > rather would bring you change for better.
> >
> > Working with DDNS, how do you accomplish goal of client knowing your IP
> when
> > they are home? Or that the Ip of router never changes even if it's
> dynamic?
> >
> >
> > "LB" <lb@NOSPAM.nospam> wrote in message
> > news:%23VPeNONGEHA.3132@TK2MSFTNGP12.phx.gbl...
> > > Thank you for reply.
> > > The biggest problem is that our ISP (we have the same ISP for A and B)
> > > doesn't give static IP address at all, so I have to find the decision
> with
> > > dynamic IP addresses. For A we use DDNS, we can do this for B, but I
> dont
> > > know if it will help. (it would be nice to change our IPS, but we
> cannot
> > do
> > > this now... ).
> > > LB.
> > >
> > > "Bhargav Shukla" <contanoctme_sp@ambhargavs.com> wrote in message
> > > news:e2HYt$MGEHA.3404@TK2MSFTNGP10.phx.gbl...
> > > > What you could do is:
> > > >
> > > > 1. upgrade your wan link to have static IP and enough bandwidth to
> > handle
> > > > the traffic between sites.
> > > >
> > > > 2. Create static routes either using RRAS or site-to-site VPN using
> ISA
> > > > server.
> > > >
> > > > 3. Do all you mentioned and more. Remote desktop management question
> can
> > > be
> > > > answered by having clients running XP pro and remote desktop and
> remote
> > > > assistance enabled.
> > > >
> > > > This might just be a high level plan to get you started. Ask if need
> > more
> > > > details.
> > > >
> > > > --
> > > > Thanks,
> > > > Bhargav Shukla
> > > > MCSE Windows Server 2003, MCSA Messaging, CCEA, RSA SecureID CSE
> > > >
> > > > "LB" <lb@NOSPAM.nospam> wrote in message
> > > > news:OIO3CzMGEHA.3724@TK2MSFTNGP11.phx.gbl...
> > > > > Hello,
> > > > > Sorry if this is stupid question but I'm just beginner.
> > > > > We have:
> > > > > headoffice A - domain company.local, 1 DC (W2K3, DNS), 2DC (W2K,
> > RRAS,
> > > > > SUS), Linksys router as DHCP server, cable internet, no static IP
> > > address
> > > > in
> > > > > WAN, so we use DDNS for vpn clients
> > > > > branch office B - 4 W2K Pro in workgroup, DLINK router as DHCP,
> cable
> > > > > internet, no static IP
> > > > > Connection between A and B - just e-mails or VPN (not very often,
> it
> > is
> > > > > hard to make people use new features) :-(. So I would like:
> > > > > 1. give to B permanent access to DFS structure in A and add DFS
> links
> > to
> > > > > share resources in B
> > > > > 2. apply GPO to B: use our SUS, get some software and so on
> > > > > 3. manage there backup system, have access to Event Viewers - work
> > with
> > > > > computers in B like with other workstation in A.
> > > > > What is the best way to implement this? Build separate domain in B
> and
> > > > > organize router-to-router communication? Make computers in B
> members
> > of
> > > > > company domain and make them log into domain using VPN link?
> Something
> > > > else?
> > > > > Thank you very much for any help, I really appreciate it.
> > > > > LB
> > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> >
>
>
- Next message: Ulf B. Simon-Weidner [MVP]: "Re: Insufficient priviledge to update scheme"
- Previous message: Ulf B. Simon-Weidner [MVP]: "Re: Using LDAP to make schema mods"
- In reply to: LB: "Re: AD structure question"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
