Remote office considerations

thanks for the quick reply.
I am planning on setting up a VPN tunnel to the separate location and i would like both locations to be on the same domain. Files will need to be accessible from both locations. We currently use Office 365 and have web based apps which wont be an issue. 

Hi
We are currently looking to setup a remote office that will house 20-40 users. I have not setup a remote office before and am looking for advice.  In particular what should i be asking the office building manager for example is there existing cabling? Will we have access to the switch closet or is that managed by a 3rd party?  Things like this i just want to make sure i am prepared when i meet with the Building manager and my CEO. 
Thanks for any advice. 
This topic first appeared in the Spiceworks Community

Similar Messages

  • Unable to allow traffic from remote office - Cisco RV220W

    Hi there,
    I have just bought the RV220W Cisco router firewall because my DLINK-1600 got broken and now I am unable to allow access to the machines located behind this router from the machines located at a remote office. Any help would be much appreciated!!
    This is the situation:
    1. Two remote offices A and B connected by a VPN tunnel (this connection is managed by an external provider and it is properly functioning)
    2. IP range A office: 192.168.236.0/24
    3. IP range B office: 192.168.237.0/24
    4. Office A: CISCO RV220W router/firewall (the one that I´ve just bought as the old dlink has broken). This RV220W is connected to a cisco router (managed by provider) that is the one with the VPN tunnel to the other office. The CISCO router does not do NAT. On the other end (Office B) there is another CISCO router managed by the provider.
    5. Everything was working smoothly until our old router/firewall got broken and that is when I bought the rv220w. I have set up the CISCO RV220W at office A and the machines can ping the machines located at office B and can browse the internet, i.e., the traffic going out is OK and in that sense everything works smoothly.
    6. The problem is that the machines located at office B cannot access the machines located behind the CISCO RV220W and I know it is a problem of the firewall as if I capture traffic coming from office B, I can see that it is dropped by the CISCO RV220W.
    7. I have tried to enable an access rule in the firewall to allow traffic from office B (see picture below) but it does not seem to work. In the field, Send to Local Server (DNAT IP) I have entered the WAN IP of my router (you cannot leave it blank) … this rule does not work at all. I think that is not properly configured but I don´t know how to do it.
    8. As you see, the problem is that I don´t know how to set up a rule to allow specific traffic coming from the WAN (traffic from remote office – 192.168.237.0/24) to the LAN at office A - 192.168.236.0/24.
    In the old router/firewall I just had to create a rule specifying the source interface (WAN) and network (Office B) and the destination interdace (LANOfficeA) and network (Office A). It does not seem that here I can do the same. i mean, you always have to point to a server ip inside the LAN??
    I know it has to be a very easy thing to do but at this moment I am completely stuck. If anyone can give me some advice would be great.
    Thanks a lot for your help in advanced!
    Eva

    Hi Eva, the default inbound policy cannot be changed. It will block all inbound traffic. To my knowledge there is not a way around this. Access rules are the only way to 'poke' a hole through the firewall but as you note, it is for a specific host. Values such as .0 and .255 do not work.
    -Tom
    Please mark answered for helpful posts

  • Remote Office with Location tracking and WIPS

    Hey guys,
    I have a question about Cisco wireless for remote offices. My client is switching to Cisco for their wireless. The services that is going to be needed are location tracking and WIPS and data. The data part may come later and it is not approved yet. For now, it is going to be just location tracking for rogue devices etc and wIPS.
    I know for data we can do Flexconnect, but for location tracking and wIPS, how are we going to deploy this? Does Flexconnect APs would be able to do LBS and wIPS services and data?
    We currently have Moto APs deployed with 3 radios which is capable of LBS, wIPS, and data. Basically, the 3rd radio does the LBS and wIPS. Also, we are using the RF-Domain Manager per branch office. I am not sure if Cisco has something similar.
    Thanks

    So, you could do FlexConnect for the remote offices, but RLDP (wired detection) might not work:
    http://www.cisco.com/en/US/products/ps10315/products_tech_note09186a0080b3690b.shtml#anc8
    Domain Manager should be similar to PI:
    http://www.cisco.com/en/US/products/ps12239/
    HTH,
    Steve
    Please remember to rate useful posts, and mark questions as answered

  • Setting up second Active Directory controller at remote office

    I need to setup active directory controller at remote office over VPN.  Right now there is one primary DC at the main site and I need to setup the new secondary DC at a new site?  Are there any instructions or steps on setting up an additional
    site to add second domain controller?    The new server is 2012R2.  The original server  is 2007 data center.

    you can create the prerequisites Ad website and attached it the right subnet.
    http://technet.microsoft.com/en-us/library/cc740187(v=ws.10).aspx
    thereafter, it is necessary to carry out the promotion server. The config ip of the new server should be that the:
    IP address: IP address new
    Mask: Mask
    Gateway: Gateway
    DNS server: DNS server already in production of dc
    After the promotion you can change the address of the DNS server to put him
    http://technet.microsoft.com/en-us/library/cc526434.aspx

  • HREAP and Remote Office VLAN

    We have a corporate office which we have a 5508 WLC and 2 WiSMs (v7.0.116) and WCS (v7.0.172) and rolling out remote offices which will have 2 or 3 APs (1142N).  I setup the first remote office with wireless using HREAP and its working well. Configuring the WLAN for the remote office we select an interface we created with the VLAN at the remote office and now that we are preparing for the next remote office can I use the same VLAN for the second office? For example, we are using local switching for a WLAN using VLAN 6 and will need the same at the second remote office.
    Thanks for any help.
    Jeff

    if you are user FlexConnect, and are on 7.2 or better code on the WLC.
    http://www.cisco.com/en/US/docs/wireless/controller/7.2/configuration/guide/cg_flexconnect.html#wp1247954
    If you are not using FlexConnect, which you said you weren't, the traffic doesn't get locally switched. it all is handeld at the WLC.
    HTH,
    Steve
    Please remember to rate useful posts, and mark questions as answered

  • Remote office in India

    I am currently working with a consulting company in India on setting up a new office in Pune India and I am running into some issues with the local rules and regulations in regard to where we can and can not terminate PSTN. The consultanting company is saying that we can not terminate PSTN to our router and that we have to have two phones on each desk (one IP phone for internal calls and the other phone is for PSTN calls). This is my first remote office outside of North America and don't know much about the local laws in India.
    has anybody had any experience in India ?
    Any response will be highly appreciated !
    Danny

    Danny, this may help.
    http://www.cisco.com/web/about/ciscoitatwork/case_studies/ipcommunications_dl10.html
    Sankar
    PS: please remember to rate posts@!

  • AA in remote office

    We have an IPT environment with 2 CCM and 1 Unity in center office,and we need deploy IPT in the remote office where call processing is done through center CCM&Unity. Now the remote office needs a separate AutoAttendant .We think it has 3 solution:
    1. AA is deployed in Unity.
    2. AA is deployed in CCM throught Extended Service CD.
    3. AA is deployed in SRST router throught B-ACD and Tcl Call-Handling Applications
    Now, I have the following question:
    1. To solution2, what is the default max number of simultaneous callers that use this AA? I remember the number is 4 per CCM, and now we have 2 CCM, is the max number 8 ?
    2. To solution3, is the B-ACD and Tcl Call-Handling Applications bundled in SRST router? Need we purchase the separate liences or application for it ? And what is the default max number of simultaneous callers that use this AA? Will the B-ACD and Tcl Call-Handling Applications effects the performance of SRST route when many caller use the application simultaneously?
    Help

    I think the max no of simultaneous sessions on AA is only limited by the number of CTI ports that you create and also the number of sessions you limit on the Application page where you attach the aa script to an application.
    For BACD, it can queue up to 300 calls. You cannot use BACD with SRST 4.0. You need to run CME in SRST mode and create ephones and ephone-dns and then run B-ACD on it. This is supported in CME 4.0. This doesnt require you to buy CME licenses. YOu just need to buy SRST licenses and phones will require Callmanager licenses (SW-CCM-UL-79XX)
    http://www.cisco.com/en/US/products/sw/voicesw/ps4625/products_configuration_guide_chapter09186a00805f2305.html
    HTH
    Sankar
    PS:please remember to rate posts!

  • Remote Office DHCP_REQD problem - users cannot receive IPs

    Dears,
    I am trying to implement a remote office into our WLC 5508 environment.
    Actually I have already did everything
    - Local DHCP - OK
    - VLANs at SW CORE - OK
    - Lightweight AP already connected to a access switch, port in trunk, w/ "native vlan 3"
    - HQ and Remote Office have different VLAN names but I have already did the vlan mapping
    HQ
    Remote Office
    For some reason, users in remote office can authenticate very well... but they do not receive IPs...
    Also, at the beggining of all this process, even after the new remote AP joined to WLC, for some reason all SSIDs received were not appearing to all users.... I had to go thru WLAN > AP GROUPS, then create a group "REMOTE" and added all WLANs (wnet, guest, mobile, consulting...) and the new remote office AP (AP01-RJOP) to that group... did I do right ?
    Does anybody have a documentation explaining how to implement this environment in a remote office ?
    thanks!
    Thanks in advance!!

    AP Groups are optional so it must be a configuration that was missed. Tale a look at this support doc which is step by step.
    https://supportforums.cisco.com/docs/DOC-24082
    Sent from Cisco Technical Support iPhone App

  • Remote office vdc registration on vcse - filter sip spam calls

    Hi all, I have some doubts about registering remote offices vdc systems on our Cisco Expressway.
    Actually remote vdc is natted on public ip and it receives random sip calls.
    I understood the only solution is to deny sip protocol on firewall, even if I register remote vdc on our Expressway. Of course in this way remote office can receive only h323 calls.
    Can anyone confirm if it is correct ?

    Hello!
    Did you try to register this 7940 before? Did you try to register any 7940 inside the office (not remote office)?
    I think, you should try:
    1) telephony service
        cnf-file perphone
        create cnf
    2) to download wirmware files from cisco.com , put it onto CME and configure tftp server with firmware for 7940.
    tftp-server flash:<file_name> alias <file_name>
    telephony service
    load 7940 <name_of_firmaware>
    2) to see: debug ephone register
                       debug tftp events
    If phone tries to download configuration and firmware from CME and what it tries to download.
    Regards,
    Kirill

  • Remote Office VPN

    I am trying to setup a tunnel between the home office(ASA 5500, on network edge) and a remote office(1800, direct public connection). The goal is to have a config which will allow the remote to learn the routes via EIGRP.
    I was informed that the ASA only supports IPSec and I would need GRE in order to allow multicast traffic, which I was told the ASA does not support.
    This information seems conflicting, and I am now trying to determine if I need to terminate the home side tunnel on a device other than the ASA.

    You can use GRE for passing multicast traffic in ASA whereas IPSec is not supporting passing multicast traffic. Refer to http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/inspect.html#wp1432892 for more information

  • Static Video link between 3 remote offices

    I've seen that done across a fiber link in Atlanta, with video only.  Audio should be easy to include.  But, I'd also consider making a separate room or headsets.  At noon and 4pm, it can get annoying to hear others (usually from Sales) BS while you're actually trying to get work done before going home.

    Hi,
    I am looking to build a kiosk that will have a static video connection between our 3 remote offices. I really like the idea shown here:
    http://blogs.atlassian.com/2011/12/developer-lives-saved-with-portal-device/
    Do any of you have similar things you have done?
    Thanks!
    This topic first appeared in the Spiceworks Community

  • Setting up VPN with OS X Server/Netgear FVS318 and remote offices

    I am a newbie to VPN and am hoping someone can help get the config right. We have an Xserve (Server 10.4) and a range of G5's (OS 10.4) in 3 remote offices and want to setup a VPN between the remote offices back to the xServe. All 3 remote office are behind their own WGT624 router. Our setup looking like this:
    Remote Office G5 (OS 10.4)
    |
    |
    Netgear WGT624 (with dynamic IP address supplied by ISP)
    |
    |
    Cable Modem
    |
    |
    **INTERNET**
    |
    |
    Cable Modem
    |
    |
    Netgear FVS318 (v1) with static IP of 61.xxx.xxx.xxx
    |
    |
    xServe (OS X 10.4 Server)
    Can someone please walk me through the setup we need at head office and how we setup the branch office.
    Thanks

    Hi,
    1701
    UDP
    L2TP
    l2f
    Mac OS X Server VPN service
    1723
    TCP
    PPTP
    pptp
    Mac OS X Server VPN service
    Try L2TP

  • WiFi remote office connection

    Hello,
    I need to connect 2 remote offices about 50 yards disance.
    I would like to ask if there is cisco AP solution so that I could bridge a group of VLAN trunks
    on a WiFi conection, I would like to bring a certain number of VLAN trunks to the remote office
    using WiFi Connection.
    Is it possible in some way ?
    thank you
    Rick

    As Stephen mentioned, yes you can.
    Get a couple of autonomous IOS 1262 AP's with external antenna
    Set one up as the root bridge (the one connected to the main LAN) and set up the remote end as a bridge.
    The connectivity to the LAN is by way of trunk ports so you can send multiple VLAN's across the wireless bridge
    Good luck
    Sent from Cisco Technical Support iPad App

  • Remote Office - Remote Control - Remote Access ??

    What you describe doesn't really make me suspect hacking.  What model router?  Many routers need to have their config saved into NVRAM or else it is lost after a power cycle.  If it is some SMB, consumer grade router it may just be junk and do that.  One other option may be that someone on site decided to put a paperclip in the reset hole to see if they could fix the Internet..

    I'm sure there is a solution, just haven't come across it yet...
    We have remote offices, with remote access, etc.
    With one critical exception......LOSS of Internet Connection.
    No one at the remote offices even have a clue as to what a router is....
    We are looking for a solution to place something (PC, Laptop, Raspberry Pi) that is on the LAN that is then accessible from the Wireless Communications Network 4G that would allow us access to the router, to reset the configuration or restore the configuration etc.
    It goes without saying it needs to be secure, available 24x7.
    Any ideas? This question was posed by our CEO, since it can take up to 3 hrs to be onsite with some of our locations.
    This topic first appeared in the Spiceworks Community

  • Keep driver store equal in about 200 remote offices

    Hello,
    just to be sure to do the right thing.
    We are migrating about 200 remote offices to oes/linux and want to keep the
    driver store equal on all servers.
    I will use a central server, setup the driver store there, put then all
    drivers into a rpm and use zen linux management for distributing it.
    After distribution in zlm I would restart the novell-idsd and everthing
    should be fine.
    Whenever a new driver is added, I would insert that driver at the central
    server - driver store, put again everthing into a rpm, distribute it ,,,,
    Should that be okay ?
    Rainer

    Rainer Brunold wrote:
    > Hello,
    >
    > just to be sure to do the right thing.
    >
    > We are migrating about 200 remote offices to oes/linux and want to keep the
    > driver store equal on all servers.
    > I will use a central server, setup the driver store there, put then all
    > drivers into a rpm and use zen linux management for distributing it.
    > After distribution in zlm I would restart the novell-idsd and everthing
    > should be fine.
    >
    > Whenever a new driver is added, I would insert that driver at the central
    > server - driver store, put again everthing into a rpm, distribute it ,,,,
    An RPM is probably not the best method for distributing the content of
    the driver store. The reason is that an RPM's contents should not
    change or be subject to deletion through the standard use of software.
    Drivers and other files inside the driver store will change over time as
    indexes get re-written or drivers get deleted. This will cause a
    verification of the RPM to fail (rpm -V <pkg.rpm).
    In your case, I would recommend that you still sync drivers via rsync or
    similar method and not use and RPM to distribute the drivers. That's my
    opinion anyway.
    Good luck.
    Printing on Linux - Novell.com
    http://en.wiktionary.org/wiki/insatsu

Maybe you are looking for