ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Question about pfSense Site to Site VPN

    Scheduled Pinned Locked Moved IT Discussion
    87 Posts 4 Posters 19.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • scottalanmillerS
      scottalanmiller @JaredBusch
      last edited by

      @JaredBusch said:

      @IT-ADMIN said:

      do you mean by not relying on DDNS that i have to change the IP myself in each IP change ????

      With OpenVPN you can have one side always be the initiator, thus you do not need a static IP at both ends. IPSEC lets you do this to, but I always have bad luck with it.

      I only skimmed the rest of the thread with Scott, but it looks like you may not be able to get a static IP at either office? that does make it difficult. In that instance I would change the remote office to be the side always initiating things, then you can always know that you only have to handle NDS changes when the main office gets a new IP.

      Correct, neither end has static.

      1 Reply Last reply Reply Quote 0
      • JaredBuschJ
        JaredBusch
        last edited by

        I cannot edit my post now, because you replied I assume? this is bad.. I see a typo.. NDS.... /sigh

        scottalanmillerS 1 Reply Last reply Reply Quote 0
        • scottalanmillerS
          scottalanmiller @JaredBusch
          last edited by

          @JaredBusch said:

          I cannot edit my post now, because you replied I assume? this is bad.. I see a typo.. NDS.... /sigh

          I can edit my old posts just above your reply. I can't figure out why you don't see an edit option.

          1 Reply Last reply Reply Quote 0
          • PSX_DefectorP
            PSX_Defector @IT-ADMIN
            last edited by

            @IT-ADMIN said:

            @scottalanmiller said:

            @IT-ADMIN said:

            in the future we can think about hosting our data (files) in the cloud, but what about Application server, this is the problem we cannot install our application in an outside server in the cloud,

            For legal reasons?

            honestly i don't know, but i think that the IT company that sold us this application will not accept to install it in an hosted server as far as i can see

            Then you don't tell them, silly. 🙂

            I can tell you that using a hosted server would solve your issue pretty well. It would give you a point to relay both offices off of to bridge the networks together. Our company also gives you the option of naming your server whatever you want. So match it to your naming convention within your current environment, use it as your VPN/Application server, and have the company install it as if it was within your own environment. Most of these kinds of things, the guys installing it are complete and utter morons, they will never figure it out.

            Or, if push comes to shove, just use a P2V utility like Vmware Converter on your current install, be it physical or virtual, spin up a cloud server and upload the image to it. No muss, no fuss.

            IT-ADMINI 1 Reply Last reply Reply Quote 0
            • PSX_DefectorP
              PSX_Defector @IT-ADMIN
              last edited by

              @IT-ADMIN said:

              yes Sir i'm an arabic speaker, did you heard about Morocco before

              Just Morocco Mole.

              mole.jpg

              IT-ADMINI 1 Reply Last reply Reply Quote 0
              • IT-ADMINI
                IT-ADMIN @PSX_Defector
                last edited by

                @PSX_Defector said:

                @IT-ADMIN said:

                yes Sir i'm an arabic speaker, did you heard about Morocco before

                Just Morocco Mole.

                mole.jpg

                ooooooh, great i didn't imagine that morocco is well known even to US citizen

                PSX_DefectorP 1 Reply Last reply Reply Quote 0
                • IT-ADMINI
                  IT-ADMIN @PSX_Defector
                  last edited by

                  @PSX_Defector said:

                  @IT-ADMIN said:

                  @scottalanmiller said:

                  @IT-ADMIN said:

                  in the future we can think about hosting our data (files) in the cloud, but what about Application server, this is the problem we cannot install our application in an outside server in the cloud,

                  For legal reasons?

                  honestly i don't know, but i think that the IT company that sold us this application will not accept to install it in an hosted server as far as i can see

                  Then you don't tell them, silly. 🙂

                  I can tell you that using a hosted server would solve your issue pretty well. It would give you a point to relay both offices off of to bridge the networks together. Our company also gives you the option of naming your server whatever you want. So match it to your naming convention within your current environment, use it as your VPN/Application server, and have the company install it as if it was within your own environment. Most of these kinds of things, the guys installing it are complete and utter morons, they will never figure it out.

                  Or, if push comes to shove, just use a P2V utility like Vmware Converter on your current install, be it physical or virtual, spin up a cloud server and upload the image to it. No muss, no fuss.

                  hhh, i understand almost 50% of what you have said, i think that you used deep slang american language,

                  PSX_DefectorP 1 Reply Last reply Reply Quote 1
                  • PSX_DefectorP
                    PSX_Defector @IT-ADMIN
                    last edited by

                    @IT-ADMIN said:

                    @PSX_Defector said:

                    @IT-ADMIN said:

                    @scottalanmiller said:

                    @IT-ADMIN said:

                    in the future we can think about hosting our data (files) in the cloud, but what about Application server, this is the problem we cannot install our application in an outside server in the cloud,

                    For legal reasons?

                    honestly i don't know, but i think that the IT company that sold us this application will not accept to install it in an hosted server as far as i can see

                    Then you don't tell them, silly. 🙂

                    I can tell you that using a hosted server would solve your issue pretty well. It would give you a point to relay both offices off of to bridge the networks together. Our company also gives you the option of naming your server whatever you want. So match it to your naming convention within your current environment, use it as your VPN/Application server, and have the company install it as if it was within your own environment. Most of these kinds of things, the guys installing it are complete and utter morons, they will never figure it out.

                    Or, if push comes to shove, just use a P2V utility like Vmware Converter on your current install, be it physical or virtual, spin up a cloud server and upload the image to it. No muss, no fuss.

                    hhh, i understand almost 50% of what you have said, i think that you used deep slang american language,

                    Wouldn't be the first time someone said my english skills were not up to par for non-english speakers. Imagine attempting to teach someone the Texas Two Step who has no idea where Texas even is. 🙂

                    I work with Vmware, so this info will be more Vmware specific.

                    http://www.vmware.com/products/converter

                    Use this to build a copy of your current server with the application installed. Upload it to your provider of choice. Then shutdown your old server, turn on the new server, then setup a VPN connection between your sites and the hosted server. Eliminate both the issue with dynamic IPs between your sites and host your application in a place where you can access it anywhere in the world. It makes things a lot easier and eliminates the vendor from knowing that you changed up the server.

                    IT-ADMINI 2 Replies Last reply Reply Quote 0
                    • PSX_DefectorP
                      PSX_Defector @IT-ADMIN
                      last edited by

                      @IT-ADMIN said:

                      @PSX_Defector said:

                      @IT-ADMIN said:

                      yes Sir i'm an arabic speaker, did you heard about Morocco before

                      Just Morocco Mole.

                      mole.jpg

                      ooooooh, great i didn't imagine that morocco is well known even to US citizen

                      Oh I've taken many a trip down the Marrakesh Express, شكرا بزاف 🙂

                      IT-ADMINI 1 Reply Last reply Reply Quote 0
                      • IT-ADMINI
                        IT-ADMIN @PSX_Defector
                        last edited by

                        @PSX_Defector said:

                        @IT-ADMIN said:

                        @PSX_Defector said:

                        @IT-ADMIN said:

                        yes Sir i'm an arabic speaker, did you heard about Morocco before

                        Just Morocco Mole.

                        mole.jpg

                        ooooooh, great i didn't imagine that morocco is well known even to US citizen

                        Oh I've taken many a trip down the Marrakesh Express, شكرا بزاف 🙂

                        waw, greaaaat, i hope you enjoyed your trip there

                        1 Reply Last reply Reply Quote 0
                        • IT-ADMINI
                          IT-ADMIN @PSX_Defector
                          last edited by

                          @PSX_Defector said:

                          @IT-ADMIN said:

                          @PSX_Defector said:

                          @IT-ADMIN said:

                          @scottalanmiller said:

                          @IT-ADMIN said:

                          in the future we can think about hosting our data (files) in the cloud, but what about Application server, this is the problem we cannot install our application in an outside server in the cloud,

                          For legal reasons?

                          honestly i don't know, but i think that the IT company that sold us this application will not accept to install it in an hosted server as far as i can see

                          Then you don't tell them, silly. 🙂

                          I can tell you that using a hosted server would solve your issue pretty well. It would give you a point to relay both offices off of to bridge the networks together. Our company also gives you the option of naming your server whatever you want. So match it to your naming convention within your current environment, use it as your VPN/Application server, and have the company install it as if it was within your own environment. Most of these kinds of things, the guys installing it are complete and utter morons, they will never figure it out.

                          Or, if push comes to shove, just use a P2V utility like Vmware Converter on your current install, be it physical or virtual, spin up a cloud server and upload the image to it. No muss, no fuss.

                          hhh, i understand almost 50% of what you have said, i think that you used deep slang american language,

                          Wouldn't be the first time someone said my english skills were not up to par for non-english speakers. Imagine attempting to teach someone the Texas Two Step who has no idea where Texas even is. 🙂

                          I work with Vmware, so this info will be more Vmware specific.

                          http://www.vmware.com/products/converter

                          Use this to build a copy of your current server with the application installed. Upload it to your provider of choice. Then shutdown your old server, turn on the new server, then setup a VPN connection between your sites and the hosted server. Eliminate both the issue with dynamic IPs between your sites and host your application in a place where you can access it anywhere in the world. It makes things a lot easier and eliminates the vendor from knowing that you changed up the server.

                          yes, now i understand you because your englich now is pretty academic, thank you very much

                          1 Reply Last reply Reply Quote 0
                          • IT-ADMINI
                            IT-ADMIN @PSX_Defector
                            last edited by

                            I work with Vmware, so this info will be more Vmware specific.

                            http://www.vmware.com/products/converter

                            great, you are working in VMware, it is a big international company, !!! it is nice to take benefit from IT professional working in such big companies, happy to talk with such people, great thanks to Mr Scott who inform me about this excellent IT discussion forum

                            scottalanmillerS PSX_DefectorP 2 Replies Last reply Reply Quote 0
                            • scottalanmillerS
                              scottalanmiller @IT-ADMIN
                              last edited by

                              @IT-ADMIN NTG is a VMware partner and a general virtualization / cloud consultancy too. VMware, Xen, HyperV, Zones, etc.

                              IT-ADMINI PSX_DefectorP 2 Replies Last reply Reply Quote 0
                              • IT-ADMINI
                                IT-ADMIN @scottalanmiller
                                last edited by

                                @scottalanmiller said:

                                @IT-ADMIN NTG is a VMware partner and a general virtualization / cloud consultancy too. VMware, Xen, HyperV, Zones, etc.

                                you are the big boss Mr Scott

                                1 Reply Last reply Reply Quote 0
                                • PSX_DefectorP
                                  PSX_Defector @scottalanmiller
                                  last edited by

                                  @scottalanmiller said:

                                  @IT-ADMIN NTG is a VMware partner and a general virtualization / cloud consultancy too. VMware, Xen, HyperV, Zones, etc.

                                  You should check out our new product rolling out soon. Crazy backend, but we also do all those fun hypervisors. All because the company we bought for this has some irrational hatred towards Vmware.

                                  Now that I'm Hyper-V certified, I'm being slowly sucked into the shit.

                                  1 Reply Last reply Reply Quote 0
                                  • PSX_DefectorP
                                    PSX_Defector @IT-ADMIN
                                    last edited by

                                    @IT-ADMIN said:

                                    I work with Vmware, so this info will be more Vmware specific.

                                    http://www.vmware.com/products/converter

                                    great, you are working in VMware, it is a big international company, !!! it is nice to take benefit from IT professional working in such big companies, happy to talk with such people, great thanks to Mr Scott who inform me about this excellent IT discussion forum

                                    I work for a big V, but not Vmware.

                                    They poach our people left and right though.

                                    1 Reply Last reply Reply Quote 0
                                    • 1
                                    • 2
                                    • 3
                                    • 4
                                    • 5
                                    • 5 / 5
                                    • First post
                                      Last post