ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Question about pfSense Site to Site VPN

    Scheduled Pinned Locked Moved IT Discussion
    87 Posts 4 Posters 19.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • IT-ADMINI
      IT-ADMIN @scottalanmiller
      last edited by

      @scottalanmiller said:

      How much memory does your application server use today? And I assume that it is running on Windows, hence the question about the license.

      yes the application is running on windows server 2008 R2, and use SQL Server for database, and the server is joined to our Domain,

      1 Reply Last reply Reply Quote 0
      • IT-ADMINI
        IT-ADMIN @scottalanmiller
        last edited by

        @scottalanmiller said:

        @IT-ADMIN said:

        yes Sir i'm an arabic speaker, did you heard about Morocco before

        LOL, yes I know Morocco. We are actually thinking about going there later this year. I've never been there but have been as close as Madrid and Lisbon. My family is considering spending a month in Spain this year and if we do we will certainly hop the ferry over to Morocco too. But we haven't settled on Spain for this year. We are also considering Croatia and are known to change our minds dramatically at the last minute. Although with only a few months left to go, we need to decide pretty soon. Those are our two most likely locations for this year. Partially it will depend if I am attending VMWorld in Barcelona or not.

        i hope you enjoy your stay in morocco

        1 Reply Last reply Reply Quote 0
        • scottalanmillerS
          scottalanmiller @IT-ADMIN
          last edited by

          @IT-ADMIN said:

          @scottalanmiller said:

          How much memory does your application server use today? And I assume that it is running on Windows, hence the question about the license.

          the size taken by the application installation is 105 MB and the database is about 100 MB

          Seems like a 2GB system might be enough. 4GB at most. From Rackspace that is $73/mo for their performance one tier with SSD storage in RAID 10 for crazy IOPS and 400Mb/s network connection. To go to 4GB of RAM is $146/mo.

          1 Reply Last reply Reply Quote 0
          • scottalanmillerS
            scottalanmiller @IT-ADMIN
            last edited by

            @IT-ADMIN said:

            @scottalanmiller said:

            @IT-ADMIN said:

            yes Mr Scott, i full understand you, thank you very much for you tireless efforts to propose new ideas

            Glad to help, gives me a nice break from cleaning the house which is what I am doing when not typing.

            hhhh, can i help you in your cleaning, i'm professional at this

            Come on over! We will have this place clean in no time.

            1 Reply Last reply Reply Quote 0
            • JaredBuschJ
              JaredBusch @IT-ADMIN
              last edited by

              @IT-ADMIN said:

              do you mean by not relying on DDNS that i have to change the IP myself in each IP change ????

              With OpenVPN you can have one side always be the initiator, thus you do not need a static IP at both ends. IPSEC lets you do this to, but I always have bad luck with it.

              I only skimmed the rest of the thread with Scott, but it looks like you may not be able to get a static IP at either office? that does make it difficult. In that instance I would change the remote office to be the side always initiating things, then you can always know that you only have to handle NDS changes when the main office gets a new IP.

              scottalanmillerS 1 Reply Last reply Reply Quote 0
              • scottalanmillerS
                scottalanmiller @JaredBusch
                last edited by

                @JaredBusch said:

                @IT-ADMIN said:

                do you mean by not relying on DDNS that i have to change the IP myself in each IP change ????

                With OpenVPN you can have one side always be the initiator, thus you do not need a static IP at both ends. IPSEC lets you do this to, but I always have bad luck with it.

                I only skimmed the rest of the thread with Scott, but it looks like you may not be able to get a static IP at either office? that does make it difficult. In that instance I would change the remote office to be the side always initiating things, then you can always know that you only have to handle NDS changes when the main office gets a new IP.

                Correct, neither end has static.

                1 Reply Last reply Reply Quote 0
                • JaredBuschJ
                  JaredBusch
                  last edited by

                  I cannot edit my post now, because you replied I assume? this is bad.. I see a typo.. NDS.... /sigh

                  scottalanmillerS 1 Reply Last reply Reply Quote 0
                  • scottalanmillerS
                    scottalanmiller @JaredBusch
                    last edited by

                    @JaredBusch said:

                    I cannot edit my post now, because you replied I assume? this is bad.. I see a typo.. NDS.... /sigh

                    I can edit my old posts just above your reply. I can't figure out why you don't see an edit option.

                    1 Reply Last reply Reply Quote 0
                    • PSX_DefectorP
                      PSX_Defector @IT-ADMIN
                      last edited by

                      @IT-ADMIN said:

                      @scottalanmiller said:

                      @IT-ADMIN said:

                      in the future we can think about hosting our data (files) in the cloud, but what about Application server, this is the problem we cannot install our application in an outside server in the cloud,

                      For legal reasons?

                      honestly i don't know, but i think that the IT company that sold us this application will not accept to install it in an hosted server as far as i can see

                      Then you don't tell them, silly. 🙂

                      I can tell you that using a hosted server would solve your issue pretty well. It would give you a point to relay both offices off of to bridge the networks together. Our company also gives you the option of naming your server whatever you want. So match it to your naming convention within your current environment, use it as your VPN/Application server, and have the company install it as if it was within your own environment. Most of these kinds of things, the guys installing it are complete and utter morons, they will never figure it out.

                      Or, if push comes to shove, just use a P2V utility like Vmware Converter on your current install, be it physical or virtual, spin up a cloud server and upload the image to it. No muss, no fuss.

                      IT-ADMINI 1 Reply Last reply Reply Quote 0
                      • PSX_DefectorP
                        PSX_Defector @IT-ADMIN
                        last edited by

                        @IT-ADMIN said:

                        yes Sir i'm an arabic speaker, did you heard about Morocco before

                        Just Morocco Mole.

                        mole.jpg

                        IT-ADMINI 1 Reply Last reply Reply Quote 0
                        • IT-ADMINI
                          IT-ADMIN @PSX_Defector
                          last edited by

                          @PSX_Defector said:

                          @IT-ADMIN said:

                          yes Sir i'm an arabic speaker, did you heard about Morocco before

                          Just Morocco Mole.

                          mole.jpg

                          ooooooh, great i didn't imagine that morocco is well known even to US citizen

                          PSX_DefectorP 1 Reply Last reply Reply Quote 0
                          • IT-ADMINI
                            IT-ADMIN @PSX_Defector
                            last edited by

                            @PSX_Defector said:

                            @IT-ADMIN said:

                            @scottalanmiller said:

                            @IT-ADMIN said:

                            in the future we can think about hosting our data (files) in the cloud, but what about Application server, this is the problem we cannot install our application in an outside server in the cloud,

                            For legal reasons?

                            honestly i don't know, but i think that the IT company that sold us this application will not accept to install it in an hosted server as far as i can see

                            Then you don't tell them, silly. 🙂

                            I can tell you that using a hosted server would solve your issue pretty well. It would give you a point to relay both offices off of to bridge the networks together. Our company also gives you the option of naming your server whatever you want. So match it to your naming convention within your current environment, use it as your VPN/Application server, and have the company install it as if it was within your own environment. Most of these kinds of things, the guys installing it are complete and utter morons, they will never figure it out.

                            Or, if push comes to shove, just use a P2V utility like Vmware Converter on your current install, be it physical or virtual, spin up a cloud server and upload the image to it. No muss, no fuss.

                            hhh, i understand almost 50% of what you have said, i think that you used deep slang american language,

                            PSX_DefectorP 1 Reply Last reply Reply Quote 1
                            • PSX_DefectorP
                              PSX_Defector @IT-ADMIN
                              last edited by

                              @IT-ADMIN said:

                              @PSX_Defector said:

                              @IT-ADMIN said:

                              @scottalanmiller said:

                              @IT-ADMIN said:

                              in the future we can think about hosting our data (files) in the cloud, but what about Application server, this is the problem we cannot install our application in an outside server in the cloud,

                              For legal reasons?

                              honestly i don't know, but i think that the IT company that sold us this application will not accept to install it in an hosted server as far as i can see

                              Then you don't tell them, silly. 🙂

                              I can tell you that using a hosted server would solve your issue pretty well. It would give you a point to relay both offices off of to bridge the networks together. Our company also gives you the option of naming your server whatever you want. So match it to your naming convention within your current environment, use it as your VPN/Application server, and have the company install it as if it was within your own environment. Most of these kinds of things, the guys installing it are complete and utter morons, they will never figure it out.

                              Or, if push comes to shove, just use a P2V utility like Vmware Converter on your current install, be it physical or virtual, spin up a cloud server and upload the image to it. No muss, no fuss.

                              hhh, i understand almost 50% of what you have said, i think that you used deep slang american language,

                              Wouldn't be the first time someone said my english skills were not up to par for non-english speakers. Imagine attempting to teach someone the Texas Two Step who has no idea where Texas even is. 🙂

                              I work with Vmware, so this info will be more Vmware specific.

                              http://www.vmware.com/products/converter

                              Use this to build a copy of your current server with the application installed. Upload it to your provider of choice. Then shutdown your old server, turn on the new server, then setup a VPN connection between your sites and the hosted server. Eliminate both the issue with dynamic IPs between your sites and host your application in a place where you can access it anywhere in the world. It makes things a lot easier and eliminates the vendor from knowing that you changed up the server.

                              IT-ADMINI 2 Replies Last reply Reply Quote 0
                              • PSX_DefectorP
                                PSX_Defector @IT-ADMIN
                                last edited by

                                @IT-ADMIN said:

                                @PSX_Defector said:

                                @IT-ADMIN said:

                                yes Sir i'm an arabic speaker, did you heard about Morocco before

                                Just Morocco Mole.

                                mole.jpg

                                ooooooh, great i didn't imagine that morocco is well known even to US citizen

                                Oh I've taken many a trip down the Marrakesh Express, شكرا بزاف 🙂

                                IT-ADMINI 1 Reply Last reply Reply Quote 0
                                • IT-ADMINI
                                  IT-ADMIN @PSX_Defector
                                  last edited by

                                  @PSX_Defector said:

                                  @IT-ADMIN said:

                                  @PSX_Defector said:

                                  @IT-ADMIN said:

                                  yes Sir i'm an arabic speaker, did you heard about Morocco before

                                  Just Morocco Mole.

                                  mole.jpg

                                  ooooooh, great i didn't imagine that morocco is well known even to US citizen

                                  Oh I've taken many a trip down the Marrakesh Express, شكرا بزاف 🙂

                                  waw, greaaaat, i hope you enjoyed your trip there

                                  1 Reply Last reply Reply Quote 0
                                  • IT-ADMINI
                                    IT-ADMIN @PSX_Defector
                                    last edited by

                                    @PSX_Defector said:

                                    @IT-ADMIN said:

                                    @PSX_Defector said:

                                    @IT-ADMIN said:

                                    @scottalanmiller said:

                                    @IT-ADMIN said:

                                    in the future we can think about hosting our data (files) in the cloud, but what about Application server, this is the problem we cannot install our application in an outside server in the cloud,

                                    For legal reasons?

                                    honestly i don't know, but i think that the IT company that sold us this application will not accept to install it in an hosted server as far as i can see

                                    Then you don't tell them, silly. 🙂

                                    I can tell you that using a hosted server would solve your issue pretty well. It would give you a point to relay both offices off of to bridge the networks together. Our company also gives you the option of naming your server whatever you want. So match it to your naming convention within your current environment, use it as your VPN/Application server, and have the company install it as if it was within your own environment. Most of these kinds of things, the guys installing it are complete and utter morons, they will never figure it out.

                                    Or, if push comes to shove, just use a P2V utility like Vmware Converter on your current install, be it physical or virtual, spin up a cloud server and upload the image to it. No muss, no fuss.

                                    hhh, i understand almost 50% of what you have said, i think that you used deep slang american language,

                                    Wouldn't be the first time someone said my english skills were not up to par for non-english speakers. Imagine attempting to teach someone the Texas Two Step who has no idea where Texas even is. 🙂

                                    I work with Vmware, so this info will be more Vmware specific.

                                    http://www.vmware.com/products/converter

                                    Use this to build a copy of your current server with the application installed. Upload it to your provider of choice. Then shutdown your old server, turn on the new server, then setup a VPN connection between your sites and the hosted server. Eliminate both the issue with dynamic IPs between your sites and host your application in a place where you can access it anywhere in the world. It makes things a lot easier and eliminates the vendor from knowing that you changed up the server.

                                    yes, now i understand you because your englich now is pretty academic, thank you very much

                                    1 Reply Last reply Reply Quote 0
                                    • IT-ADMINI
                                      IT-ADMIN @PSX_Defector
                                      last edited by

                                      I work with Vmware, so this info will be more Vmware specific.

                                      http://www.vmware.com/products/converter

                                      great, you are working in VMware, it is a big international company, !!! it is nice to take benefit from IT professional working in such big companies, happy to talk with such people, great thanks to Mr Scott who inform me about this excellent IT discussion forum

                                      scottalanmillerS PSX_DefectorP 2 Replies Last reply Reply Quote 0
                                      • scottalanmillerS
                                        scottalanmiller @IT-ADMIN
                                        last edited by

                                        @IT-ADMIN NTG is a VMware partner and a general virtualization / cloud consultancy too. VMware, Xen, HyperV, Zones, etc.

                                        IT-ADMINI PSX_DefectorP 2 Replies Last reply Reply Quote 0
                                        • IT-ADMINI
                                          IT-ADMIN @scottalanmiller
                                          last edited by

                                          @scottalanmiller said:

                                          @IT-ADMIN NTG is a VMware partner and a general virtualization / cloud consultancy too. VMware, Xen, HyperV, Zones, etc.

                                          you are the big boss Mr Scott

                                          1 Reply Last reply Reply Quote 0
                                          • PSX_DefectorP
                                            PSX_Defector @scottalanmiller
                                            last edited by

                                            @scottalanmiller said:

                                            @IT-ADMIN NTG is a VMware partner and a general virtualization / cloud consultancy too. VMware, Xen, HyperV, Zones, etc.

                                            You should check out our new product rolling out soon. Crazy backend, but we also do all those fun hypervisors. All because the company we bought for this has some irrational hatred towards Vmware.

                                            Now that I'm Hyper-V certified, I'm being slowly sucked into the shit.

                                            1 Reply Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 3
                                            • 4
                                            • 5
                                            • 4 / 5
                                            • First post
                                              Last post