Hello everyone,
I have been coming back to anandtech forms for many years reading interesting posts.
Today I have my own questions.
Backstory.
we are a small business with 4 locations that need to be connected through a vpn.
For the last 4 years I have been using Logmein products.
They have been excellent for what we needed at the time, and was super simple to setup. I could have remote access to all of our computers through logmein, Hamachi supplied me with a tunnel to all of our network systems.
I could easily choose who gets to see what network resources, use my tablet or phone to remote control any pc. Which is excellent if someone had questions or needed assistance.
In 2 weeks we have a linux server coming onsite to our main location (YELLOW in diagram) the developers of the software need VPN access to this server to do maintenance and backups, our 3 other locations will also need to communicate to this server to run a database with the new POS.
Logmein does have an option for linux but it is in beta and is not designed for production.
since it is not up to production quality we do not want it this would only cause headaches and issues down the road, also for us to have our developer install a hamachi tunnel on their system seems quite unprofessional. .
I have decided that it is time to grow up and get a real VPN with some added features and most importantly SECURITY!
We need access from mobile devices IOS and Android.
Keeping the employees off facebook would be great too, but not required.
Here is a current diagram of our networks.
Yellow is the main business where the SERVER will be. - VPN hardware would be here.
Currently SMC comcast business gateway, with firewall.
switch separate wifi ap.
Red is second business which is 800' away across the street. - this network needs access to b1
Currently SMC comcast business gateway, with firewall.
switch separate wifi ap.
I have been playing with the idea of making a wifi link from b1 to b2.
Used for network to server and data.
Blue is remote offices more than 3 miles -needs access to b1 and b2
comcast modem and phone unit using wifi router and additional wifi router used as a switch and ap. to cover the whole office building.
Grey is warehouse more than 10 miles away -needs access to b1
Currently SMC comcast business gateway, with firewall.
wifi router.
Questions.
Can we set up a wifi point to point link that will be able to use both internet connections?
Oddly enough there have been 3+ instances where we had internet connection at one location but not the other even though they are directly across the street from each other.
this would be great if there is a way to utilize both connections at the same time, and if the internet is down we have access between both buildings.
What type of devices would I need to accomplish a link and be able to use both internet connections simultaneously? I have made wifi links in the past but not to where there where 2 internet connections. I have plenty of lmr-400 cable to make antenna runs to the roof.
Would I need 2 VPN firewall devices at each location b1 and b2? with or with out the wifi link?
which vpn/firewall devices does anyone recommend.
I have been reading on Sonicwall, and Juniper srx devices.
I dont like the idea of sonic wall charging for each client...do we have to use their update plan and pay $300. a year for updates and client use?
I know they are expensive pieces of important equipment, but we are a small business I dont want something that is overkill but also we do want something that can last a long time and still work when we upgrade.
When I look on the manufactures websites i feel over whelmed with information and have spend ALOT of time already just looking at devices I am starting to confuse my self more.
Any recommendations to look at or maybe more importantly
things i should ask myself :IE other needs or requirements for this network before spending a whole week researching?
Thanks to everyone that just read through this mess of information.
I have been coming back to anandtech forms for many years reading interesting posts.
Today I have my own questions.
Backstory.
we are a small business with 4 locations that need to be connected through a vpn.
For the last 4 years I have been using Logmein products.
They have been excellent for what we needed at the time, and was super simple to setup. I could have remote access to all of our computers through logmein, Hamachi supplied me with a tunnel to all of our network systems.
I could easily choose who gets to see what network resources, use my tablet or phone to remote control any pc. Which is excellent if someone had questions or needed assistance.
In 2 weeks we have a linux server coming onsite to our main location (YELLOW in diagram) the developers of the software need VPN access to this server to do maintenance and backups, our 3 other locations will also need to communicate to this server to run a database with the new POS.
Logmein does have an option for linux but it is in beta and is not designed for production.
since it is not up to production quality we do not want it this would only cause headaches and issues down the road, also for us to have our developer install a hamachi tunnel on their system seems quite unprofessional. .
I have decided that it is time to grow up and get a real VPN with some added features and most importantly SECURITY!
We need access from mobile devices IOS and Android.
Keeping the employees off facebook would be great too, but not required.
Here is a current diagram of our networks.
Yellow is the main business where the SERVER will be. - VPN hardware would be here.
Currently SMC comcast business gateway, with firewall.
switch separate wifi ap.
Red is second business which is 800' away across the street. - this network needs access to b1
Currently SMC comcast business gateway, with firewall.
switch separate wifi ap.
I have been playing with the idea of making a wifi link from b1 to b2.
Used for network to server and data.
Blue is remote offices more than 3 miles -needs access to b1 and b2
comcast modem and phone unit using wifi router and additional wifi router used as a switch and ap. to cover the whole office building.
Grey is warehouse more than 10 miles away -needs access to b1
Currently SMC comcast business gateway, with firewall.
wifi router.
Questions.
Can we set up a wifi point to point link that will be able to use both internet connections?
Oddly enough there have been 3+ instances where we had internet connection at one location but not the other even though they are directly across the street from each other.
this would be great if there is a way to utilize both connections at the same time, and if the internet is down we have access between both buildings.
What type of devices would I need to accomplish a link and be able to use both internet connections simultaneously? I have made wifi links in the past but not to where there where 2 internet connections. I have plenty of lmr-400 cable to make antenna runs to the roof.
Would I need 2 VPN firewall devices at each location b1 and b2? with or with out the wifi link?
which vpn/firewall devices does anyone recommend.
I have been reading on Sonicwall, and Juniper srx devices.
I dont like the idea of sonic wall charging for each client...do we have to use their update plan and pay $300. a year for updates and client use?
I know they are expensive pieces of important equipment, but we are a small business I dont want something that is overkill but also we do want something that can last a long time and still work when we upgrade.
When I look on the manufactures websites i feel over whelmed with information and have spend ALOT of time already just looking at devices I am starting to confuse my self more.
Any recommendations to look at or maybe more importantly
things i should ask myself :IE other needs or requirements for this network before spending a whole week researching?
Thanks to everyone that just read through this mess of information.
Facebook
Twitter