Branch Office setup

Similar Messages

• Branch  Office Setup Error.........

  hi all,
  when i try to do branch office setup from the webtogo server,the download hangs at one point and dislays this error........ this error does not appear when i do normal setup......
  webtgo.exe bad image
  "..............mysync_java.dll is not a valid windows image . please check against your installation diskette"
  i use oracle 8i database and oracle 9i lite(with latest patchset for 9i lite).
  i try to download on windows 2000 professional and 2000 server.....
  can anyone provide solution for this???????
  Thanks,
  Ashok Kumar

  Hi again
  This are my findings up to this moment
  managed somehow to pass the authentication problem and reached this exception
  Sync session exception stack trace:
  java.sql.SQLException: ORA-01403: no data found
  ORA-06512: at "MOBILEADMIN.CONS_EXT", line 216
  ORA-06512: at line 1
       at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:166)
       at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:318)
       at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:281)
       at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:636)
       at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:185)
       at oracle.jdbc.driver.T4CPreparedStatement.execute_for_rows(T4CPreparedStatement.java:799)
       at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1211)
       at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3137)
       at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3208)
       at oracle.lite.sync.Subscription.executeAndClose(Unknown Source)
       at oracle.lite.sync.HeliosSession.startSession(Unknown Source)
  To reach this point:
  - set the m_conn private member of the heliosSession class with reflection with value from Consolidator.getConnection()
  - set the m_client_id public member with username
  - set prviate m_passwd private member of heliosSession with reflection with the password.
  - to advance, changed in table mobileclient.c$etc_passwd with userpassword instead of null. somehow seems that heliossSession class, in initconvis method is comparring password from the file with that one, that is null. I don't know all the implications of this.
  Hope it helps
  Florin

• Branch office setup with L3 switch and router with IOS security

  Hello,
  I am in the process of putting together a small branch office network and I am in need of some design advise. The network will support about 10-15 workstations/phones, 3-4 printers, and 4-5 servers. In addition we will eventually have up to 25-30 remote users connecting to the servers via remote access VPN, and there will also be 2-3 site-to-site IPSec tunnels to reach other branches.
  I have a 2911 (security bundle) router and 3560 IP Base L3 switch to work with. I have attached a basic diagram of my topology. My initial design plan for the network was to setup separate VLANs for workstation, phone, printer, and server traffic. The 3560 would then be setup with SVIs to perform routing between VLANs. The port between the router and switch would be setup as a routed port, and static routes would be applied on the switch and router as necessary. The thought behind this was that I'd be utilizing the switch backplane for VLAN routing instead instead of doing router-on-a-stick.
  Since there is no firewall between the switch and router my plan was to setup IOS firewalling on the router. From what I am reading ZBF is my best option for this. What I was hoping for was a way to set custom policies for each VLAN, but it seems that zones are applied per interface. Since the interface between the router and switch is a routed interface, not a trunk/subinterface(s), it doesn't seem like there would be a way for me to use ZBF to control traffic on different VLANs. From what I am gathering I would have to group all of my internal network into one zone, or I would have to scrap L3 switching all together and do router-on-a-stick if I want to be able to set separate policies for each VLAN. Am I correct in my thinking here?
  I guess what I am getting at is that I really don't want to do router-on-a-stick if I have a nice switch backplane to do all of the internal routing. At the same time I obviously need some kind of firewalling done on the router, and since different VLANs have different security requirements the firewalling needs to be fairly granular.
  If I am indeed correct in the above thinking what would be the best solution for my scenario? That is, how can I setup this network so that I am utilizing the switch to do L3 routing while also leveraging the firewall capabilities of IOS security?
  Any input would be appreciated.
  Thanks,
  Austin

  Thanks for the input.
  1. I agree, since I have only three to four printers, they need not be in a separate VLAN. I simply was compartmentalizing VLANs by function when I initially came up with the design.
  2. Here's a little more info on the phone situation. The phones are VoIP. The IP PBX is on premise, but they are currently on a completely separate ISP/network. The goal in the future is to converge the data and voice networks and setup PBR/route maps to route voice traffic out the voice ISP and data traffic out the other ISP. This leads up to #3. 
  3. The reason a router was purchased over a firewall was that ASA's cannot handle routing and dual ISPs very well. PBR is not supported at all on an ASA, and dual ISPs can only be setup in an active/standby state. Also, an ASA Sec+ does not have near the VPN capabilities that the 2911 security does. The ASA Sec+ would support only 25 concurrent IPSec connections while the 2911 security is capable of doing an upwards of 200 IPSec connections.
  Your point about moving the SVI's to a firewall to perform filtering between VLANs makes sense, however, wouldn't this be the same thing as creating subinterfaces on a router? In both cases you are moving routing from the switch backplane to the firewall/routing device, which is what I am trying to avoid.  

• Branch office web-to-go is not starting

  Hi,
  I have downloaded and installed the Oracle Lite Branch Office setup from server's webtogo/setup. But the webtogo in branch office PC is not starting. The htttp://localhost/webtogo and listener are not started even after executing the executables manually.
  The PATH variable is set correctly. The branch office PC has Windows XP.
  Regards,
  Aneesh

  Hi,
  webtogo -d option is giving following error.
  E:\mobileclient\bin>webtogo -d
  log9: [LOADING wtgos.dll BOAdminToolNative]
  log9: [BOAdminToolNative wtgos Loaded Successfully]
  log9: MODE_BRANCH CONNECT_STRING =jdbc:polite@:1160:
  log1: Translated JDK:'Cp1252' to IANA: 'WINDOWS-1252'
  log1: Mount point jdbc:polite@:1160:WEBTOGO oracle.lite.web.ifs.OMFS@145d068
  log9: java.sql.SQLException: [ODBC 08001] unable to connect to data source
  log9: at oracle.lite.poljdbc.LiteEmbJDBCConnection.jniDriverConnect(Native Met
  hod)
  log9: at oracle.lite.poljdbc.LiteEmbJDBCConnection.connect(Unknown Source)
  log9: at oracle.lite.poljdbc.LiteType2JDBCFactory.createConnection(Unknown Sou
  rce)
  log9: at oracle.lite.poljdbc.POLJDBCConnection.<init>(Unknown Source)
  log9: at oracle.lite.poljdbc.OracleConnection.<init>(Unknown Source)
  log9: at oracle.lite.poljdbc.POLJDBCDriver.connect(Unknown Source)
  log9: at java.sql.DriverManager.getConnection(Unknown Source)
  log9: at java.sql.DriverManager.getConnection(Unknown Source)
  log9: at oracle.lite.web.JupConnection.<init>(Unknown Source)
  log9: at oracle.lite.web.JupConfig.createConnection(Unknown Source)
  log9: at oracle.lite.web.JupConfig.getConnection(Unknown Source)
  log9: at oracle.lite.web.JupConfig.getStatement(Unknown Source)
  log9: at oracle.lite.web.JupServer.loadMimes(Unknown Source)
  log9: at oracle.lite.web.JupConfig.reload(Unknown Source)
  log9: at oracle.lite.web.JupConfig.initializeRM(Unknown Source)
  log9: at oracle.lite.web.JupConfig.initializeRM(Unknown Source)
  log9: at oracle.lite.web.JupServer.initialize(Unknown Source)
  log9: at oracle.lite.web.JupServer.listen(Unknown Source)
  log9: at oracle.lite.web.JupServer.main(Unknown Source)
  log-1: ============== Server Exception - Begin ==================
  java.sql.SQLException: [ODBC 08001] unable to connect to data source
  at oracle.lite.poljdbc.LiteEmbJDBCConnection.jniDriverConnect(Native Met
  hod)
  at oracle.lite.poljdbc.LiteEmbJDBCConnection.connect(Unknown Source)
  at oracle.lite.poljdbc.LiteType2JDBCFactory.createConnection(Unknown Sou
  rce)
  at oracle.lite.poljdbc.POLJDBCConnection.<init>(Unknown Source)
  at oracle.lite.poljdbc.OracleConnection.<init>(Unknown Source)
  at oracle.lite.poljdbc.POLJDBCDriver.connect(Unknown Source)
  at java.sql.DriverManager.getConnection(Unknown Source)
  at java.sql.DriverManager.getConnection(Unknown Source)
  at oracle.lite.web.JupConnection.<init>(Unknown Source)
  at oracle.lite.web.JupConfig.createConnection(Unknown Source)
  at oracle.lite.web.JupConfig.getConnection(Unknown Source)
  at oracle.lite.web.FileHandlerUtil.<init>(Unknown Source)
  at oracle.mobile.job.Scheduler.<init>(Unknown Source)
  at oracle.lite.web.JupConfig.initializeRM(Unknown Source)
  at oracle.lite.web.JupConfig.initializeRM(Unknown Source)
  at oracle.lite.web.JupServer.initialize(Unknown Source)
  at oracle.lite.web.JupServer.listen(Unknown Source)
  at oracle.lite.web.JupServer.main(Unknown Source)
  ================== Server Exception - End ====================
  Noticed that listener is not getting started,
  E:\mobileclient\bin>olsv2040 /start
  OliteService reports the following error:
  OliteService failed, Error Code: (0x5), Message: Access is denied.
  Internal message: StartService failed in CmdStartService function.
  Forgot to mention earlier,
  During installation of branch office client, I recieved following Warnings,
  1. Operating system message: Password doesnot meet minimum security requirements. Check the password length, complexity and history.
  2. No mapping between accounts and security ID was done.
  Thanks,
  Regards,
  Aneesh

• Simulating small branch office in lab network

  Hi,
  I have to setup what seems to be a very basic configuration, but it doesn't work.
  In our lab there is a cluster of switches with a 3550 that does all the routing for vlans.
  I need to simulate a sort of a small branch office that has one connection
  to the outside world (the lab network).
  Here is my design:
  Vlan 230 (the internet)
  A port on 3550 is in vlan 230 and is connected to e0/0 (172.26.230.150) on 2611 router.
  e0/1 interface on a 2611 is (192.168.1.1).
  A PC is connected to e0/1 (192.168.1.12).
  From the router I can ping any host on vlan 230 and other vlans,
  I can also ping the pc connected to e0/1.
  However from the PC I can only ping 192.168.1.1(e0/1) and 172.26.230.150 (e0/0)
  Below is my configuration
  Thanks for your help.
  R2611-1#sh run
  Building configuration...
  Current configuration:
  version 12.0
  service timestamps debug uptime
  service timestamps log uptime
  no service password-encryption
  hostname R2611-1
  ip subnet-zero
  ip dhcp excluded-address 192.168.1.1 192.168.1.9
  ip dhcp pool 192.168.1
     network 192.168.1.0 255.255.255.0
     default-router 192.168.1.1
  interface Ethernet0/0
  ip address 172.26.230.150 255.255.255.0
  no ip directed-broadcast
  no ip mroute-cache
  no mop enabled
  interface Ethernet0/1
  ip address 192.168.1.1 255.255.255.0
  no ip directed-broadcast
  no ip mroute-cache
  ip classless
  ip route 0.0.0.0 0.0.0.0 172.26.230.1
  ip http server
  no scheduler allocate
  end

  You are not performing nat on the router.
  This is typically required on a box which provides internet connectivity.
  Probably the other hosts on vlan 230 have no route back to the pc on 192.168.1.1
  Configuring nat on the router will resolve this problem.
  regards,
  Leo

• Windows 8.1 laptop not connecting to domain in branch office

  We have a problem with a laptop. 
  It is installed in our Head office (The Netherlands), just like all other laptops by using an image.
  Tested and working on the domain.
  The user had to go to one of our branch offices (China) and when he connected there, the laptop just won't connect to the domain.
  When he plugged in the laptop, it keeps trying to connect it's directaccess.
  Other laptops (same image) immediately recognize the domain network, but this laptop just won't.
  I am able to ping everything on the local network (MPLS connection), from HQ to all Branch offices but not access them.
  I've tried changing the DNS settings, but without any result.
  Any suggestions?

  Hi,
  According to this tool's description, I think it should be helpful to check system current enviroment, such as network, certificates, etc. problem. Actually according to your description, I doubt it probably network enviroment of ISP problem, but we should
  find a way to verify our suspect. Then this tool would be convenient, it also would generate a trace log and it would be helpful with troubleshooting.
  The DirectAccess Client Troubleshooting Tool is a graphical application, based on the .NET Framework, which checks the health of a DirectAccess client by running various tests.  Built-in health tests: The following tests are currently implemented:
  Network interfaces Network location (NLS and NRPT DNS) IP connectivity (6to4, Teredo, IPHTTPS, entry point in a multisite setup, DNS) Windows Firewall (applied profile, Firewall outbound rules) Certificates (EKU Client Authentication, trust chain for AIA and
  CRL) IPsec infrastructure tunnel (Domain SysVol share) IPsec intranet tunnel (PING and HTTP probes) Additional features Run post-check script (PowerShell, VBScript, BAT or CMD file)
  Roger Lu
  TechNet Community Support

• Branch Office Connectivity

  hi
  we have firewall setup in our main office with following setup:
  we are running DC on Windows 2008 Servers with MS Exchange 2010, lync 2010 and ip phone as well.
  planning to setup AD replication to our branch offices for network drive access and group policy update; kindly advice on this.
  Best Regards,
  Ramesh TP

  Hi
   i think you mean about best practice topology.
  First of all,you will add Additional Domain Controllers on your branch offices.Also This ADC will have DNS,DHCP role based.And will deploy a File server.
  Important point is structure you want to build.
  This is a detailed article about domain topologies, So please check this article about your questions;
  https://msdn.microsoft.com/en-us/library/cc749945.aspx?=255&MSPPError=-2147217396

• Branch Office Mail Server?

  I have Mac OS X providing mail services to about 100 users at a main office. We are opening a branch office with 20-30 users. I'm wondering if it is possible to setup another mail server for the branch office using the same domain. The users at the branch office are moderately heavy users who will often deal with lots of attachments. I would like them to have an IMAP server that is local to them for better performance and to reduce traffic on the main office network.
  I thought I'd give it a try. There's a field called "Mail Server" on the mail tab of WGM for each user. I put the address of the branch office server in that field. However, the main office server keeps the messages in its own mailstore. So, what's this field for? It doesn't seem to do anything.
  I see a way to accomplish this by editing the postfix alias file for each user and adding a line for each branch office user like branchofficeuser: [email protected] but that wouldn't be so nice if I ever have to turn over administration of these servers to someone else.
  Is there any way to distribute mail for users of the same domain across more than one IMAP server without resorting to entering aliases to subdomains for each user?

  x

• Branch Office implementation

  where can I find a good white paper on 'Branch Office' arch. and implementation of Lite?

  Hi ,
  Oracle Lite -Branch Office not working as expected
  Lite Version- 5.0.2
  1.     The documentation says an odbc dsn should have been automatically created with a name of "USER_DBNAME” when sync with Mobile server
  2.     A blank "files available for download" page is display with no buttons and no file from url ‘http://BR/public/download’
  3.     Can’t see any application in the Branch office system
       Steps used to create/publish a branch office application
       We have three machines and their hostnames are
       M1 = Mobile Server + Mobile development kit Win2k
       M2 = Branch Office win2k
       M3 = Branch Office client win2k
  1) Install Mobile Server and mobile developer kit 5.0.2 on machine M1 2) Launch "Mobile Server Control Center" to machine M1
  3) Create user “Test”, Assign user "Test" System Privilege of
  "Administrator"
  4) Assign user "Test" to the "Branch Adminstrators" group
  5) Create a dummy application (Sample. jar).
  6) Launch packaging wizard on machine m1
  7) Select "Win32 Native" as your target
  8) created snapshots with scott.emp table
  9) Enter "Sample" in the client side database name field.
  10) Publish the application from machine M1
  11) Launch "Mobile Server Control Center" to machine m1
  12) from the applications tab of "Control Center" Select the
  "Sample” application
  13) Enter the database users password and save the change
  14) Select the "Access" link from the left nav and grant user
  "Test" access to the "Sample" application
  15) Select the "Files" link from the left nav then select the win32
  link.
  Check the public file box for file "Sample.jar" and save changes
  16) from machine M1 install branch office by downloading the software
  from machine M1.
  Download/install http://MO/webtogo/setup, select the "branch
  office" download
  17) From the M1 machine launch setup.exe
  18) Sign on as user Test, Press "next" to sync
  19) The documentation says an odbc dsn should have been automatically
  created with a name of "Test_Sample".
  Can see only DSN name “webtogo” which points to <<Dir>>\OLDB40 and file ‘Sample.odb’
  20) From the M1 machine launch the control center @ http://localhost/ 21) Sign on as user shekar , Press sync tab
  20) checked the M1 machine and it did not install my "Sample.jar" but can see ‘Sample.odb’
  21) Now attempt to configure the branch office client machine m1
  22) From machine M2 download the client software @ http://m1/public/download
  23) A blank "files available for download" page is display with no buttons and no file.

• Branch Office Install

  Hello,
  My client is planning on deploying branch office and is hitting
  the limit of 16 concurrent users. They need about 20-25
  concurrent users.
  Can branch office me installed more than once on the
  same server? Is this a supported configuration?
  thanks in advance,
  mike

  Hi
  You will need to make sure all the ports are open for traffic to move between both DC's. Also need to check that you dont have replication problems, IE, slow link. First step would be to see if you can ping the HO DC from the branch, then once you have established
  that you have all the ports open and your VLAN is routing traffic correctly then you can start with your DC setup.
  You can first upgrade your DC, look at this blog: 
  http://blogs.technet.com/b/kevinholman/archive/2013/09/25/upgrading-domain-controllers-to-windows-server-2012-r2.aspx
  Hope this helps. Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

• Proper Configuration of DNS server for our new branch office

  Hi All,
  Our new office will setup a new branch office with a routed network link to our HO. In HO, we have 2 domain controllers configured as AD and DNS just for fail over scenarios.
  How will we configure the DNS server of our 3rd domain controller which we will placed in the new branch office. What would be the proper settings of DNS server integrated to AD to work well especially to have a successful replication and communication to
  the 2 DC's located in HO?

  Hi,
  If you have multiple DC's in that site i would recommend using any of the partner DC's IP addresses as preferred one and secondary DNS IP to pointing to itself. Dont use loopback addresses configure it with actual IP addresses.
  If you have only one server in branch office point itself as the primary DNS and HO DC as secondary and tertiary.
  Make sure that all clients in your branch site are pointing to the branch DC as primary DNS server.
  Regards,
  Rafic
  If you found this post helpful, please give it a "Helpful" vote.
  If it answered your question, remember to mark it as an "Answer".
  This posting is provided "AS IS" with no warranties and confers no rights! Always test ANY suggestion in a test environment before implementing!

• New Branch Office Opening. Active Directory Options

  Hello.
  Our company has a new branch site in Canada that's been in operation for some time now. the "admin" of that branch office is wanting to setup 2 new domain controllers, i was going to suggest that we could add a Canada site via Active directory
  sites and services and configure it that way.
  he suggested that he would like the to have a separate domain name, for instance if we're contoso.co.uk, they want to be contoso.ca
  is the best option in this situation to have them setup there own domain and then just federate between them?
  i have good experience with AD but as were a small company (geographically) so i have little knowledge of multi site / federation topology.
  any suggestions would be most welcome. 
  Many Thanks

  Hello
  If you decide to deploy new Domain this will lead to new administrative tasks to able to support users(creating trust to support access to resources in other domain, other suit of GPOs etc.). Instead if second site is added this will be more simple solution.
  semi -solution is to have child domain which back again will lead to other admin tasks. Also Recommendation by the vendor to have simple solution.

• OSPF design for branch offices across MPLS

  Hello fellow networking engineers,
  I want to implement OSPF in our network. We have multiple branch offices, all linked to an MPLS backbone.
  I know that in order to get linked areas, I would need to setup GRE tunnels between them, but I want to avoid static/manual configurations as much as possible. With multiple sites, it would become cumbersome to create a mesh real fast.
  Is running OSPF independent areas at each site, and simply redistributing over eBGP a valid solution? This will host voice and data, and will failover to VPN connection (Cisco ASAs) if the MPLS goes down.
  For the VPN backup links, I thought of two options. Either simply using the default route to send everything to the ASA in case of MPLS "death", or inject routes using IP SLA...
  Any input would be appreciated.

  Marc
  You don't GRE tunnels to link your areas if that is what you want to do.
  If the SP supports it then you can exchange your OSPF routes between areas and they will still be seen as inter area routes rather than OSPF externals which they would if you simply treated each area as isolated from each other.
  In effect the MPLS network becomes an OSPF super backbone area and your main site would also be part of the backbone area with all your other sites having an area each.
  You still redistribute your OSPF routes into BGP but with some extra configuration on both your CEs and the SP PE devices.
  Like I say you would need to check with your SP but it is possible.
  Whether or not you need or want it I don't know.
  Your other option is as you have proposed to treat each OSPF area as an isolated one and simply redistribute into OSPF at each CE. Then within each site all non local routes would be seen as OSPF external routes.
  Either way in terms of backup I would keep it simple and use a default route at each site pointing to the ASA device. I can't see what you gain from IP SLA because if the main MPLS link goes down at any site the only other path they have out is via the ASA so there is nothing really worth tracking.
  The only other thing I would mention is remote site to remote site traffic. If there is any then presumably with your VPN tunnels you would be doing a sort of hub and spoke where the hub is the main site so you may need to think about traffic coming in from one VPN tunnel and going out to another VPN tunnel on the main site ASA.
  This would only really be needed if two or more sites had to use their backup links at the same time.
  In terms of which is better ie. OSPF inter area across the MPLS cloud or OSPF externals I can't really say to be honest. With the MPLS networks i have worked on we ran EIGRP and simply treated each remote site as an isolated AS.
  If you are already running OSPF then you may want to preserve your existing areas so it would make sense to go with the inter area option.
  If it is a new setup then I don't really know the pros and cons of either so can't really comment.
  Perhaps others may add to the thread with their thoughts.
  Jon

• Help on set up branch office with 2921 H323 gateway

  I setup a new branch office with 2921 H323 gateway and cucm in HQ.  When I call a number in remote office, I get dead silence and busy tone.  However, user can hear ring at the remote location and able to answer the phone.  I was able to talk to him.  Any place I need to check? 
  Question #2, should cucm in HQ handle all calls between HQ and remote office?  I tried to call from my VoIP phone to remote office VoIP phone and monitored remote office GW running "debug voip ccapi inout".  I saw messages like gateway is handling calls.  Is this normal?  
  I'm fairly new to VoIP environment, still trying to learn.  Thanks. Let me know if you need anything to troubleshoot this. 

  I think that's where I'm confused.  I'd like to have CUCM to handle every calls for remote sites.  when I searched for the number I'm dialing for remote office, there is a route pattern that covers this number and it points to gateway.  This route pattern covers all of their local numbers including our remote office numbers.  For example, I have 9.1201456XXXX point to H323 GW.  That I got it.  However, I want the numbers belong to our office like 1111 don't go to GW for call processing.  Do I make sense?  I want only their local call to remote office go through GW not our internal call between our offices.  I'm sorry if I don't make much sense.  Thanks for your help. 

• Install windows server 2012 DC on Branch office

  Hi ALL,
  i am planning to install a secondary DC on our branch office where currently they are on different domain and forest. our head office is currently on windows server 2008 R2 std, where forest and domain functional level are on windows server 2003. our headoffice
  domain name is:- (corpoffice.org) and branch office domain is:- ssl (its a single level domain on windows server 2003).
  am thinking to upgrade our headoffice DC to windows server 2012 r2 and the same i wanted to do for branch office as well.
  i need some guidance how to proceed with this DC setup as both vlan network is different and all the client settings are different. am getting few query like
  1. should i upgrade my headoffice DC first before i setup the branch office DC.
  2. how the branch office client will communicate to new DC.
  any suggestion and guidance would really helpful.
  Thanks
  srini

  Hi
  You will need to make sure all the ports are open for traffic to move between both DC's. Also need to check that you dont have replication problems, IE, slow link. First step would be to see if you can ping the HO DC from the branch, then once you have established
  that you have all the ports open and your VLAN is routing traffic correctly then you can start with your DC setup.
  You can first upgrade your DC, look at this blog: 
  http://blogs.technet.com/b/kevinholman/archive/2013/09/25/upgrading-domain-controllers-to-windows-server-2012-r2.aspx
  Hope this helps. Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.