Re: SBS VPN setup?
- From: "Cliff Galiher" <cgaliher@xxxxxxxxx>
- Date: Mon, 18 Aug 2008 15:55:56 -0600
Inline:
-Cliff
"tlc_13200@xxxxxxxxxxx" <tlc13200hotmailcom@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:DACDFD9F-264B-4DDF-B348-88874ED641C9@xxxxxxxxxxxxxxxx
Hi Steve B-This is a valid concern for any consultant, which is why I presented my answers in the fashion I did. The problem always is, if you screw up, it isn't your network, it is somebody elses. It actually bothers me (and I don't mean any offense to you, but it is how I feel) when a consultant...who is obviously getting paid....wants to dive into a new project and get free help. Don't get me wrong, EVERYBODY gets stuck, and and asking for help is not a bad thing. But when you AREN'T stuck then it is time to buy proper research materials. Maybe it is a book, or maybe it is an education class, or maybe it is partnering with another expert in your area and sharing the work (and the profits) to ensure client satisfaction. But the idea of charging a client while asking for free walkthroughs is concerning to me. Maybe that's not what you are doing...I am generalizing here...but I wanted to be clear why I answer the way I do.
I was just thinking about using a software like: "GoToMyPC" by Citrix, and
the suggestion you made sounds interesting too... I will surely have to check
it out.
Even though the suggestion from Apirl and Cliff are quite helpful to an
extent... my concern is the learning curve of setting up a VPN/RWW and not
knowing how it will turn out.
Being that I'd read so many issues and threadsYep, and that is usually because users dive in. I can't stress how important a test setup is. I first got SBS 2k3 in the action pack in 2004 (four years ago) so...I know you say you haven't renewed yet, but unless you let it expire a LONG time ago, you should still have SBS 2k3 floating around.
on the internet with clients having issues of setting one up. Either a port
not forwarding, or another issue as server not beening seen on the
connections.
My concern is down time and problems. Although I'd spoken to theThat is a choice you have to make. GoToMyPC is another component that must be properly set up, secured, and administered. I personally see no benefit and a few drawbacks. But you would get support from Citrix, so maybe it becomes a wash for you.
representative at Citrix about their product, it seems more appealing for me
to have my client go this route for now, and maybe another solution later, or
simply figuring out the RWW as trial and error without affecting him to
continue to work! (hopefully I can set up a RWW/VPN on the server and not
affect him to still use "GoToMyPC" while doing it)?
So, I have two more questions.I would contend it is as easy to setup RWW initially, but maybe not 'easier.' There are things to consider at your perimeter and decisions to be made about how tightly you want to lock down RWW. But it *is* easier to administer after the fact. Adding new machines, etc...because it is all integrated with the SBS wizards.
Do you really think it is easier to set up a RWW in SBS 2003 R2 (2008)
Standard as you claim?
And usig RWW/VPN that is included on SBS, can more than one user access theRWW does not connect to the server. It just uses the server to connect to a PC (or multiple PC's) so you could achieve the same net effect. Multiple users can use RWW at the same time, yes. Native VPN is just another network connection, so yes again, multiple connections are allowed...but I wouldn't recommend letting users log onto the server. Shared file access, sure. But if you need users to log onto a machine, whether VPN, RWW, or GoToMyPC, that machine should *NOT* be the SBS server. EVER!!! In that scenario, you should be planning a separate TS server deployment or another method to get employees access to local applications.
server at the same time, or not?
In your other post, you also asked for a book recommendation (I didn't want to reply twice...just seems messy and further splinters the thread.) So, here you go.
I appreicate your effects in answering my question regarding this.
http://www.amazon.com/gp/reader/0735622809/ref=sib_dp_pt#reader-link
Written by Charlie Russel (a regular here as well) and in the advanced chapter is a section on setting up L2TP/IPSec VPNs. It gets you the idea of where you'll be going, but since it is primarily an SBS book, not a VPN book, it may not give you the level of detail you want if you run into trouble. For that, I recommend:
http://www.amazon.com/Deploying-Networks-Microsoft-Technical-Reference/dp/0735615764/ref=sr_1_1?ie=UTF8&s=books&qid=1219096415&sr=1-1
Between the two. one to help you see how a VPN fits into your SBS design, and the other to dig into the inner workings of VPN's in a Microsoft environment, you should have all of the resources at your disposal to make an insightful and accurate decision for your client.
Thanks!
Dave-
"SteveB" wrote:
As especially April has indicated you should really look at the wonderful
functionality built in to SBS 2003 (& SBS 2008) which is RWW. It is really
quite easy to setup and most of the time there is no need for VPN at all.
RWW is also quite secure and if you need additional security on top of the
normal there is a product (AuthAnvil) from Dana Epp, a MS security MVP.
"tlc_13200@xxxxxxxxxxx" <tlc13200hotmailcom@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote
in message news:43F3E927-1507-41D1-8F80-BECC83046AE3@xxxxxxxxxxxxxxxx
> Also a question Cliff/April (Anyone) -
>
> The article which I found discovered claims that it will help setup a
> server
> as a router, is this truly necessary if behind a router already? I know > it
> might sound like a stupid question, but being I have never done this
> before,
> I intend to see by building a small server test to determine if this > works
> efficiently or not? LIke to know if this is a good security measure to
> work
> with?
>
> Thanks,
>
> Dave -
> "tlc_13200@xxxxxxxxxxx" wrote:
>
>> Hello Cliff-
>>
>> I discovered that both applications work, and I thank you for that
>> suggestion on the second question about configuring a VPN on the >> network.
>> As
>> for the Action Pack, haven't bought a renewal as of yet, and I know >> that
>> it
>> isn't going to be easy to setup, I am wondering by reading threads and
>> post
>> suggestions I'd read online if the issues of second NIC cards, and
>> programming the router's ports... I think my question really is... on >> the
>> server side as to what software is best, I heard that third party
>> applications is easier than setting up RWW and more secured?
>>
>> Is that case?
>>
>> Also, what books do you suggest?
>>
>> And also, that link I sugested eariler, is that a good guide to >> configure
>> a
>> RWW?
>>
>> Dave -
>>
>> "Cliff Galiher" wrote:
>>
>> > Here are the short answers:
>> >
>> > To the first question:
>> > Yes, both SBS 2003 and 2008 will have VPN functionality available.
>> >
>> > To the second question:
>> > Anytime you are allowing external access to the network, security
>> > becomes a
>> > major consideration. With that in mind, nothing..no solution...no
>> > process...nothing is easy to setup and configure. As a consultant
>> > (you did
>> > say you were installing "for my client") you'd be best served >> > spending
>> > some
>> > money on a good book (or two or three) to aid you....as well as >> > doing a
>> > few
>> > test setups first. The MS Action Pack (great for consultants) is
>> > offered by
>> > Microsoft for exactly these scenarios.
>> >
>> > -Cliff
>> >
>> > "tlc_13200@xxxxxxxxxxx" >> > <tlc13200hotmailcom@xxxxxxxxxxxxxxxxxxxxxxxxx>
>> > wrote
>> > in message >> > news:92688AE6-1409-4799-B25F-690A02A3C14B@xxxxxxxxxxxxxxxx
>> > >I haven't done this before, but will be installing SBS Windows 2003 >> > >R2
>> > >or
>> > > 2008 whichever is best suitable for my client, and like to know >> > > how
>> > > he can
>> > > VPN into the server off site using the internet?
>> > >
>> > > My question(s) are, does VPN come with SBS 2003 R2/2008, and is it
>> > > easy to
>> > > setup and configure so that he can use it remotely?
>> > >
>> > > Please advise?
>> > >
>> > > Thanks-
>> > >
>> > > Dave-
>> >
>> >
.
- Follow-Ups:
- Re: SBS VPN setup?
- From: tlc_13200@hotmail.com
- Re: SBS VPN setup?
- References:
- SBS VPN setup?
- From: tlc_13200@hotmail.com
- Re: SBS VPN setup?
- From: Cliff Galiher
- Re: SBS VPN setup?
- From: tlc_13200@hotmail.com
- Re: SBS VPN setup?
- From: tlc_13200@hotmail.com
- Re: SBS VPN setup?
- From: SteveB
- Re: SBS VPN setup?
- From: tlc_13200@hotmail.com
- SBS VPN setup?
- Prev by Date: Re: SBS VPN setup?
- Next by Date: Re: Available space and drive partition info not matching
- Previous by thread: Re: SBS VPN setup?
- Next by thread: Re: SBS VPN setup?
- Index(es):
Relevant Pages
|
Loading
