|
|
Question : AD replication server over IPSec tunnel- advantages?
|
|
Experts,
Two locs one forest with 1 dc (GC and FSMO roles) in FL and the replicating DC in GA over IPsec VPN tunnel(watchguard(ny) and soho(ga). NY has a t1 with majority of users there (30), remote employees average at about 20 making vpn client connections) and GA is a suite rental with NATed addressess over 256 fractional link. I do not at this time know the up/down speeds.
This setup was done over three years ago. I am in the process of migrating the 2000(GC/FSMO DC in FL) to a new 2003(new hw) DC and wondering if and what I should do with the replicating server in GA? What are the advantages of having my replicating DC over the VPN ipsec in GA at this point? Does it make better sense to have a replicating server here at the same site in FL instead or even a hosted facility now? Not a lot of GP at this time, but will be administering more of those and implementing Thin client(TS).
looking for advise, best practices, pros vs. cons.
Thanks,
Dee30
|
Answer : AD replication server over IPSec tunnel- advantages?
|
|
your biggest advantages are centralised and standardised environments - your AD becomes one single point of everything....you also gain a direct offiste backup of your AD for every site that you have a DC....replication is virtually not raffic at all so you can really lose
Disadvantages = none
|
|
|
|
|