Forum Search:
Forum.Brain-Cluster.com: Brain Cluster Technical Forum
Ultimate forum for Technical Discussions

Home » Microsoft » Windows Server » Active Directory » AD Site Replication links for redundant VPN's
AD Site Replication links for redundant VPN's [message #156703] Tue, 23 June 2009 16:44 Go to next message
brandon_it  is currently offline brandon_it  United States
Messages: 7
Registered: June 2009
Junior Member
I have a question regarding how to setup a redundant VPN connection for
replication. Below is a very simplified description, the actual network has
many more sites.

I have the following SITES defined in Sites & Services:
NEW ORLEANS (main site)
DALLAS (backup datacenter)
AUSTRALIA (branch site)

I have the following SITE LINKS defined:
NO <-> DALLAS cost:10 45 Mbps DS3
NO <-> AUSTRALIA cost:500 1 Mbps VPN

KCC right now has defined a replication link between NO and AUSTRALIA.

Because Dallas is our backup datacenter, our Australia office also has a VPN
connections to DALLAS. Right now, I only have a SITE LINK defined for
Australia to NO.

My question is:

Do I need to create a SITE LINK for the DALLAS <-> AUSTRALIA vpn link? Or
would KCC automatically generate that link if the main NO site were to go
down?

I'm pretty confused by this replication design when dealing with a
completely redundant network and Disaster Recovery considerations. Any
easy-to-understand reading material would also be gratefully accepted.

Thanks for all the assistance ahead of time!

Brandon
RE: AD Site Replication links for redundant VPN's [message #156915 is a reply to message #156703] Fri, 26 June 2009 03:49 Go to previous message
Garry Starck-MCITP En  is currently offline Garry Starck-MCITP En
Messages: 69
Registered: July 2009
Member
Hello Brandon

Is there a WAN link from Dallas to Aus? If No is the answer, then
replication can occur by bridging site links NO-Dallas and NO-Aus / is the
global setting of Bridge all site links (BASL) on? If neither of the latter 2
are set on, Bridges allow transitive connections even if DC's are down in the
NO site, provided WAN connectivity through the HUB(NO) is up.

2nly, if in a physical link exists between Dallas and Aus, then you could
create another Dall-AUS site link and KCC would the auto gen a connection
object. You should then not bridge any other the links manually or with BASL

Lastly: You should set Site (Topology Design) links as per physical WAN
connections. EG: 1 Hub and 5 spokes will have 5 links called
hub-spoke1,hub-spoke2,hub-spoke3,hub-spoke4,hub-spoke5. This is if the WAN
links are point to point. You must no have Bridging of site links on, unless
you're running a cloud of some sort, eg: MPLS networks.

Hope this helps.

--
Garry Starck
MCITP Enterprise Administrator, MCTS AD, MCSE 2003 Messaging, MCDBA


"Brandon I.T." wrote:

> I have a question regarding how to setup a redundant VPN connection for
> replication. Below is a very simplified description, the actual network has
> many more sites.
>
> I have the following SITES defined in Sites & Services:
> NEW ORLEANS (main site)
> DALLAS (backup datacenter)
> AUSTRALIA (branch site)
>
> I have the following SITE LINKS defined:
> NO <-> DALLAS cost:10 45 Mbps DS3
> NO <-> AUSTRALIA cost:500 1 Mbps VPN
>
> KCC right now has defined a replication link between NO and AUSTRALIA.
>
> Because Dallas is our backup datacenter, our Australia office also has a VPN
> connections to DALLAS. Right now, I only have a SITE LINK defined for
> Australia to NO.
>
> My question is:
>
> Do I need to create a SITE LINK for the DALLAS <-> AUSTRALIA vpn link? Or
> would KCC automatically generate that link if the main NO site were to go
> down?
>
> I'm pretty confused by this replication design when dealing with a
> completely redundant network and Disaster Recovery considerations. Any
> easy-to-understand reading material would also be gratefully accepted.
>
> Thanks for all the assistance ahead of time!
>
> Brandon
>
>
>
Previous Topic:Logoff on idle with lock already active
Next Topic:Win2k3 R2 AD to W2K8 R2
Goto Forum:
  


Current Time: Sat Oct 21 19:05:00 EDT 2017

Total time taken to generate the page: 0.03812 seconds
.:: Contact :: Home ::Sitemap::.

Powered by: FUDforum 3.0.0RC2.
Copyright ©2001-2009 FUDforum Bulletin Board Software