|
|
 |
|
|
|||||||
| Petri.co.il is happy to award auglan the title of Most Valuable Member !!! |
| Register |  Calendar |
 Search |
 Today's Posts |
Mark Forums Read |
| Notices |
|
|
 |
multi site - no vpnthis thread has 5 replies and has been viewed 1966 times
|
 |
|
|
Thread Tools | Search this Thread | Display Modes |
|
#1
22nd January 2007, 12:04
|
||||||||
|
||||||||
multi site - no vpn
Hi.
excuse me as i am a newbie . My client is an organization that has multiple branches around the world. the connection between the branched - it's owned by the same person. that's it. each branch has it's own IT people (sometimes outsourced, sometimes in the organization). each branch has it's own firewall (multiple vendors) and AD. My client would like to encrypt emails going withing the organization. So an Exchange 2007 solution came in mind. we do NOT want to make a single AD that would cater for all the branched, but rather a parallel AD just for the Exchange solution. The problem: this is a multi-site configuration for the Exchange - were we need 5-7 exchage servers around the world. now... the problem: creating a multi-site VPN is not a realistic option right now. because: to many types of FWs, not trained enough people at the brached (with this kind of work), we do not need VPN to share users/files/printers whatsover. just need it for the Exchange. Is there a solution to create such a solution for multi-site without VPN that could work reliably ? Thanks. May. |
|
#2
25th January 2007, 02:30
|
|||||||||||
|
|||||||||||
|
Re: multi site - no vpn
The only option I can think of given the consraints is Hosted Exchange - you might want to do some research about providers that can provide the geographic coverage you require.
__________________
Guy Teverovsky http://blogs.technet.com/b/isrpfeplat/ "Smith & Wesson - the original point and click interface" |
|
#4
28th January 2007, 22:04
|
||||||||
|
||||||||
|
Re: multi site - no vpn
we are now checking another option:
putting a FW box (that can do VPN) BEHIND the FW that is in place in each branch. if possible, it will be in the DMZ port of the existing FW. this way we could do the VPN for the active directory, while not touching the existing FW rules. what do you think ? |
|
#5
29th January 2007, 01:07
|
||||||||||
|
||||||||||
|
Re: multi site - no vpn
I think you need to setup a Site-to-site vpn.
I'm don't know what kind of firewalls you got and which one you want to purchase.
__________________
Marcel Netherlands http://www.phetios.com http://blog.nessus.nl MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE No matter how secure, there is always the human factor. |
|
#6
29th January 2007, 12:15
|
||||||||
|
||||||||
|
Re: multi site - no vpn
Hi, of course site-to-site.
we currently have a mix between the branches. sonicwall, cisco, 3com, fortigate, checkpoint ... the whole idea of creating a VPN without using the existing hardware is: we do not want to change anything in them, as they work now, and we are afraid that changing the setup will cause lots of problems. there are places in the world that they have their own VPN between the locations within the country, and we do not want to mess things up. paying for additional hardware (as long as the solution works) is money better spent than solving problems from remote |
|
| Thread Tools | Search this Thread |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| AD Multi Domain design | Anderso | Active Directory | 1 | 28th November 2006 17:46 |
| exchange with multi domain. | milo974 | Exchange 2000 / 2003 | 1 | 7th February 2006 23:09 |
| One IP Address 4 Multi Purpose? | habibalby | Misc | 6 | 26th October 2005 00:34 |
| multi session user | alitoday | Windows Server 2000 / 2003 | 1 | 14th October 2004 18:09 |
| multi user per pc | koroknoy | Windows Server 2000 / 2003 | 15 | 10th May 2004 10:42 |
(10)
(592)
Linear Mode
