Unoffical empeg BBS

Quick Links: Empeg FAQ | RioCar.Org | Hijack | BigDisk Builder | jEmplode | emphatic
Repairs: Repairs

Page 1 of 2 1 2 >
Topic Options
#295104 - 12/03/2007 11:40 Some help on a little project of mine please...
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Hi Guys,

It’s been a while since I’ve tinkered with PC’s, and now the opportunity has come up for a nice little project, and I’ve decided to go ahead with it.

This is the situation:

My father-in-law has a doctor’s practice. In his practice he currently has two secretaries, who each have their own PC. Both of these PC’s are hardwired to a Linksys router. This router is also fed with internet via an external Thomson 510 ADSL modem. My father-in-law himself uses a laptop which is wirelessly also connected to the linksys router.

He also has another practice in a different city, in which he works two days a week. In that pratice he works alone, his secretaries remain a the ‘main’ office.

He also sometimes works from home.

This is the current setup:

All my father-in-law really needs is his one access .mdb file. This file is used for everything: filing patients, making invoices, insurance companies, etc.

Currently, this file is located physically on one of the secretaries PC’s. (I’ll call it SEC1 PC from here on). The other secretary works on the same file, via the LAN. (SEC2 PC) She uses nothing that is locally installed.

My father-in-law then also connects his laptop to the network, and daily uses some synchronisation software to create his daily backup onto his laptop. This also enables him to use this database when he works in the other city. One other thing he syncs is his outlook appointments onto his PC (to put on his IPAQ).

No really a very complicated setup.

However, I would like to improve this setup.

For one, I would like to use a central server, where this .mdb and outlook stuff should be located. The way I see it, I’ve got two ways of doing this (not really knowing anything about Linux, or else –I agree- there would be a third option): I could run a small server with two disks in RAID 1 (for data integrity purposes), running windows 2003 server. I'd also like to use an extra backup of some sort (weekly or even daily, on an external HD which would be disconnected wjen not in use). I guess Windows 2003 has some backup software on board which could do this, no?

OR

I could use a NAS, like the Infrant ReadyNAS. But of couse, that would mean I would have to use a different, VPN server capable router (see below). This would add to the complication, and would not necessaritly be any cheaper, OR faster I think...

What do you guys think? Windows 2003 (my preferred setup), or go the NAS route?

The second thing I would like to implement, is a VPN tunnel to his second practice and his home address, so he could always secure and in real-time, access that .mdb file and his appointments both at his second practice and at home.

I’ve got several questions regarding this VPN, because that’s something I’ve never done before.

I would like to use D-Link DGL-4300 routers, on all of the three addresses. Why? Because I use this router myself, I know what it can do and I’ve experienced this router as very flexible and stable. It’s also got gigabit Ethernet ports which is nice (and would actually be used in this setup)

This router cannot be used as a VPN server (only VPN pass-through), but I don’t think this would be necessary, because the windows 2003 would take on that part, correct? In case I would use a NAS, I would need to use another router I suppose, one that does support VPN.

I see VPN basically consists out of two protocols PPTP and Ipsec. PPTP seems easier to implement, seems more flexible, but is also said to hold greater risks. Is this true? Which protocol would you use?

I would also need very simple ADSL model, to connect to the D-Link router. That Thomson modem is no good. It works for Internet, but yesterday I tried to install UltraVNC onto his office computers, but somehow this modem doesn’t allow this. Using UltraVNC viewer from those PC’s to another PC did work, but not the other way around. The router’s port’s were configured correctly. I even tried directly connecting the modem to the PC (remove the linkSys altogether), and though I did have internet access, VNC still didn’t work. This Thomson model is a very simple and basic model, in which little on nothing, apart from the account login and password can be configured. So my guess is this modem will have to go. Any thoughts on which modem I should replace it with?

So this is my project basically. Probably a walk in the park for most of you, but challenging enough for me to be fun.

I also more or less got carte blanch with regards to cost, so that’s not really an issue.

What do you guys think?
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295105 - 12/03/2007 12:03 Re: Some help on a little project of mine please... [Re: BartDG]
JBjorgen
carpal tunnel

Registered: 19/01/2002
Posts: 3584
Loc: Columbus, OH
Question about this MDB file... Is it separated into a front-end and back-end database? If so, is it self-created or from a vendor?

I've had good success with using mysql as the backend database for MS Access apps. MySQL server will run on both windows and linux and is significantly more stable for a network environment than an Access mdb file. You then simply link the tables through odbc and you'll never know it's there.

If you were to run MySQL or some other database of your choice, you could remotely connect to it through an SSH tunnel as opposed to a full VPN.

I had a similar situation for our reps when on the road. We have a customer database with an access front-end and mysql back-end. I wrote a little script that detects whether they are on the local network or not and if not, opens a ssh tunnel with putty and starts the database and automatically relinks the tables. Works great for our needs.
_________________________
~ John

Top
#295106 - 12/03/2007 12:11 Re: Some help on a little project of mine please... [Re: BartDG]
JBjorgen
carpal tunnel

Registered: 19/01/2002
Posts: 3584
Loc: Columbus, OH
A quick addendum: You could use the D-Link DI-824VUP router for the home office as opposed to the one you reference and the software should be very similar. Then you could use the VPN capabilites built-in to the router.
_________________________
~ John

Top
#295107 - 12/03/2007 12:23 Re: Some help on a little project of mine please... [Re: JBjorgen]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Quote:
Question about this MDB file... Is it separated into a front-end and back-end database? If so, is it self-created or from a vendor?

Whoa... I have to be honest: I have no idea. My girlfriend created this database herself in access. I have to admit that I don't know what the difference is between a front-end or back-end database.
I'll ask her to be sure.
Quote:

I've had good success with using mysql as the backend database for MS Access apps. MySQL server will run on both windows and linux and is significantly more stable for a network environment than an Access mdb file. You then simply link the tables through odbc and you'll never know it's there.

This sounds very nice! So you're saying I should run MySQL (have heard about this, but don't really know what it is... again: ), and link the tables to that? Could you expain this a bit more please?
The way I was thinking to do it, was by simply putting this .MDB file onto the server, and giving access to it from the three different PC's. Since five people can work into one .MDB file at the same time, I didn't think this would be a problem.
What would then actually be the benefit of using mySQL?

Quote:

If you were to run MySQL or some other database of your choice, you could remotely connect to it through an SSH tunnel as opposed to a full VPN.

Again:
Seems I'm in for quite some fun. On the other hand, I also expect to learn a lot from it. So, here's one thing I can learn already...: what is the difference between those two?
Quote:

I had a similar situation for our reps when on the road. We have a customer database with an access front-end and mysql back-end. I wrote a little script that detects whether they are on the local network or not and if not, opens a ssh tunnel with putty and starts the database and automatically relinks the tables. Works great for our needs.

Sounds very nice, but a but too much for our needs. Besides, I know my way around hardware a but, but could code myself out of a wet paper bag. So writing scripts myself will not be possible.
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295108 - 12/03/2007 12:24 Re: Some help on a little project of mine please... [Re: JBjorgen]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Quote:
A quick addendum: You could use the D-Link DI-824VUP router for the home office as opposed to the one you reference and the software should be very similar. Then you could use the VPN capabilites built-in to the router.

Well, this was one of the things I was wondering about: would it be better to use a Windows 2003 for a VPN setup, or a router which can do VPN? My guess is the first, because for what I would like to do, I would need Windows 2003 server anyway, or not? (another reason is that a software solution is usually a lot more flexible than a hardware solution, is doesn't this apply in this case?)
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295109 - 12/03/2007 15:47 Re: Some help on a little project of mine please... [Re: BartDG]
tfabris
carpal tunnel

Registered: 20/12/1999
Posts: 31597
Loc: Seattle, WA
I once tried to use the built-in Windows Server 2003 VPN features, using PPTP to tunnel in through the internet router.

This worked, but it had one important drawback: Only one person can dial into the VPN at a time. If you have two users who need to VPN into the local office, you'll need to use a different method.

Reason: PPTP VPN, when traversing NAT, encrypts the packets that tell it what the internal (nat-ed) addresses are. So you can get the router passing through the VPN packets just fine, but it can't tell the difference between one person's VPN connection and the next person's VPN connection.

So what happens is, you get this all working, one guy connects to the VPN and is working fine. Then the second guy tries dialing into the VPN and the first guy's connection mysteriously drops, but the second guy works fine for a while. Until the first guy tries re-dialing...

I gave up, said fuck it, replaced the cheapo router with a SonicWall TZ-170 with the client licenses for multiple VPN connections, and gave all the VPN users a disc to install the SonicWall VPN client software. Everything Just Worked after that. I could VPN as many simultaneous users as I'd paid client licenses for.

I think that I was asking for similar help on this BBS during that time. It would have been almost exactly two years ago. Perhaps some of the information in that thread would help. Anyone got a link to it?
_________________________
Tony Fabris

Top
#295110 - 12/03/2007 15:53 Re: Some help on a little project of mine please... [Re: tfabris]
wfaulk
carpal tunnel

Registered: 25/12/2000
Posts: 16706
Loc: Raleigh, NC US
A lot of home routers these days are VPN endpoints. You shouldn't need to go to the expense of buying a SonicWall.

In fact, the DD-WRT replacement firmware for Broadcom routers includes VPN capabilities. Others might, too. That means you can get a VPN-enabled router for $50 or less.


Edited by wfaulk (12/03/2007 16:01)
_________________________
Bitt Faulk

Top
#295111 - 12/03/2007 17:24 Re: Some help on a little project of mine please... [Re: tfabris]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Quote:
Only one person can dial into the VPN at a time. If you have two users who need to VPN into the local office, you'll need to use a different method.

Reason: PPTP VPN, when traversing NAT, encrypts the packets that tell it what the internal (nat-ed) addresses are. So you can get the router passing through the VPN packets just fine, but it can't tell the difference between one person's VPN connection and the next person's VPN connection.

This is indeed an important drawback. Even though I would never need more than two (theoretically three, but usually only one) simultaneous users, it's probably better to do it right first time without cutting corners.
I take it this was a limitation of the PPTP protocol, and not Windows 2003's fault?

Quote:

I think that I was asking for similar help on this BBS during that time. It would have been almost exactly two years ago. Perhaps some of the information in that thread would help. Anyone got a link to it?

Yes, that would probably be very helpful! Cheers!
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295112 - 12/03/2007 17:25 Re: Some help on a little project of mine please... [Re: wfaulk]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
So I get it you guys suggest using a router which can do VPN IPsec server instead of just VPN pass through?

If so, that rules out that d-link 4300 I referred to earlier.

But no worries, I'm open to suggestions: which router would be a good one at a fair price? Things I would need on this router: wireless capability, a gigabit switch, and now also VPN IP sec server stuff. All the rest I would need (like port forwarding and stuff) is so common with even the cheapest routers these days I won't even bother to post it.

I'm don't really stick with one brand: I just want a solution that works.
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295113 - 12/03/2007 17:35 Re: Some help on a little project of mine please... [Re: BartDG]
tfabris
carpal tunnel

Registered: 20/12/1999
Posts: 31597
Loc: Seattle, WA
Quote:
I take it this was a limitation of the PPTP protocol, and not Windows 2003's fault?


Correct.

Basically, it means: Trying to tunnel through a NAT router to a VPN server is really limited. You're better off getting a router that can work as a VPN endpoint itself. As was mentioned above, there are some cheap routers that work this way, or can be firmware-flashed to work this way.
_________________________
Tony Fabris

Top
#295114 - 12/03/2007 19:02 Re: Some help on a little project of mine please... [Re: tfabris]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Quote:
Quote:
I take it this was a limitation of the PPTP protocol, and not Windows 2003's fault?


Correct.

Basically, it means: Trying to tunnel through a NAT router to a VPN server is really limited. You're better off getting a router that can work as a VPN endpoint itself. As was mentioned above, there are some cheap routers that work this way, or can be firmware-flashed to work this way.

Thanks, that crystal clear.

One more question though (this probably sounds very dumb to somebody who already knows this): My guess is I only need one of those VPN server capable routers? On the 'client' side, all I probably need to do is setup a VPN connection through windows? I mean, I don't need such a VPN router on both ends? (so on those ends, I could use a D-link 4300?)
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295115 - 12/03/2007 19:22 Re: Some help on a little project of mine please... [Re: BartDG]
tfabris
carpal tunnel

Registered: 20/12/1999
Posts: 31597
Loc: Seattle, WA
In theory, yes, all you need at the client end is to set up a VPN connection through Windows, as long as the router at the head-end is configured properly (and it's of a type that really can accept a standard VPN connection instead of something proprietary).

Note that I tried to do that very thing two years ago with a cheap Linksys router that was, in theory, supposed to be able to work as a VPN endpoint. I couldn't get it to work. I gave up and went with SonicWall, which was more expensive, but which Just Worked.

My recommendation is to look online at the user manuals for the router you're thinking of getting (or the user manuals for the replacement flash software, if you're going that route), and make sure the instructions explicitly show how to set up such a situation, indicating that it's a supported feature. If you can find that info, then you're probably OK to buy that router.
_________________________
Tony Fabris

Top
#295116 - 12/03/2007 19:40 Re: Some help on a little project of mine please... [Re: BartDG]
mlord
carpal tunnel

Registered: 29/08/2000
Posts: 14493
Loc: Canada
Quote:
Things I would need on this router: wireless capability, a gigabit switch, and now also VPN IP sec server stuff. All the rest I would need (like port forwarding and stuff) is so common with even the cheapest routers these days I won't even bother to post it.


Heh.. Even my CAD$22.50 cheapie wireless-G routers have VPN endpoint functionality.
I haven't used it (yet), but it probably works like everything else on it.



Cheers


Attachments
295742-vpn.jpg (289 downloads)


Top
#295117 - 12/03/2007 19:49 Re: Some help on a little project of mine please... [Re: tfabris]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Thanks for the info!
Quote:

Note that I tried to do that very thing two years ago with a cheap Linksys router that was, in theory, supposed to be able to work as a VPN endpoint. I couldn't get it to work. I gave up and went with SonicWall, which was more expensive, but which Just Worked.

I've never heard of SonicWall over here, so I guess that brand is not all that common ever here. (though I do see they've got a UK and German site)
I wasn't going to use Linksys either. I've had bad experiences with it in the past. I was thinking more of Draytek, more in particular the 2600g model which can do about anything I want it to. The only thing it lacks is an internal gigabit switch it seems. Which I think is a shame, because all the PC's I'm going to connect it to have built-in gigabit ethernet connections.
It seems gigabit routers are still pretty rare for consumer or semi-professional use. Shame.
Quote:

My recommendation is to look online at the user manuals for the router you're thinking of getting (or the user manuals for the replacement flash software, if you're going that route), and make sure the instructions explicitly show how to set up such a situation, indicating that it's a supported feature. If you can find that info, then you're probably OK to buy that router.

That's good advice, thanks!
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295118 - 12/03/2007 20:05 Re: Some help on a little project of mine please... [Re: BartDG]
matthew_k
pooh-bah

Registered: 12/02/2002
Posts: 2298
Loc: Berkeley, California
I've seen this complaint here and elsewhere about the lack of gigabit home routers. Not a single home router is capable of routing at anything close to 100bT speeds. Assuming you own some duct tape and a patch cable, the only valid complaint is that you don't want to deal with two wall warts.

Matthew

Top
#295119 - 12/03/2007 20:11 Re: Some help on a little project of mine please... [Re: matthew_k]
mlord
carpal tunnel

Registered: 29/08/2000
Posts: 14493
Loc: Canada
Quote:
I've seen this complaint here and elsewhere about the lack of gigabit home routers. Not a single home router is capable of routing at anything close to 100bT speeds.

Sure: client-to-client.

Quote:

Assuming you own some duct tape and a patch cable, the only valid complaint is that you don't want to deal with two wall warts.


Space. Power consumption. Survival of mankind, and all of that.


Edited by mlord (12/03/2007 20:30)

Top
#295120 - 12/03/2007 20:22 Re: Some help on a little project of mine please... [Re: matthew_k]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Quote:
I've seen this complaint here and elsewhere about the lack of gigabit home routers. Not a single home router is capable of routing at anything close to 100bT speeds. Assuming you own some duct tape and a patch cable, the only valid complaint is that you don't want to deal with two wall warts.


I know this isn't important for a connection over the internet, but remember I also want to use this router in the the internal LAN. Those PC's would benefit from gigabit lan. I know I can fix this by adding a gigabit LAN switch, but I would rather see all this in one nice little box which does it all.
Power consumption, as Mark states, is one issue. (small one) Another one is the added amount to the total cost (even smaller one) and the fact that it doesn't look so...neat.
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295121 - 12/03/2007 20:55 Re: Some help on a little project of mine please... [Re: BartDG]
matthew_k
pooh-bah

Registered: 12/02/2002
Posts: 2298
Loc: Berkeley, California
Quote:
Sure: client-to-client.

I know cisco likes to make claims about layer 3 switches, I always tend to work with classic vocabulary of layer 2 being switching and layer 3 being routing.
Quote:
...(small one)...(even smaller one)... and the fact that it doesn't look so...neat.

Well, I guess we differ, as I'm off the opinion that nothing looks neater than a full rack o' hardware with lots o' blinken' lights.

But in all seriousness. Routers come and go, switching hardware comes and goes, but rarely do your VPN or routing needs change at the same time as your number of computers or speed of ethernet changes. The simplicity of one device will cost you each time you want to upgrade one of the underlying components.

Matthew

Top
#295122 - 12/03/2007 21:10 Re: Some help on a little project of mine please... [Re: matthew_k]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Fair enough. But I figured, since I'm re-doing this while setup anyway, I might as well immediately do it the right way, so my father-in-law will set until his retirement.

Guess it's not going to happen, and I'll end up with 100 bT. Oh well, I can think of worse things.
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295123 - 12/03/2007 21:27 Re: Some help on a little project of mine please... [Re: tfabris]
AndrewT
old hand

Registered: 16/02/2002
Posts: 867
Loc: Oxford, UK
Quote:
I gave up, said fuck it, replaced the cheapo router with a SonicWall TZ-170

Seconded. The VPN "just works" on these and you can distribute the VPN client to as many users as you want. They've recently stopped bundling the single VPN client licence with the low-end 10 user models but the licence is £20+tax in the trade so not a biggie I guess.

I recently snagged an unlimited user TZ170 with 6-months sonicwall warranty remaining off eBay for about £65 - while I don't need the unlimited user licence, the Enhanced OS has very granular configuration options. Not that that's doing down the Standard OS - that's actually better in terms of user friendliness, truth be told.

Top
#295124 - 12/03/2007 21:42 Re: Some help on a little project of mine please... [Re: BartDG]
AndrewT
old hand

Registered: 16/02/2002
Posts: 867
Loc: Oxford, UK
The Draytek Vigor is a good router. On the surface they look overpriced (eBay is your friend) but they use the Windows VPN client and are a doddle to setup. I still prefer the Sonicwall TZ170 personally.

Rather than shifting .mdb data across the wire, personally I would simply use Server 2003's remote desktop connection and merely use the travelling PC as a terminal. AFAIK, you get a bundled 1-user administrator licence for remote desktop. The benefits are that you're reducing the risk of corrupting the .mdb file if your remote connection drops, you are not carrying possibly sensitive data around on a laptop that is easily lost/stolen, everything is taking place on the local server so your remote connection speed just limits your screen updating speed, your remote PC requirements are minimal.

As far as remote desktop goes router-wise, VPN is the more secure option. Not recommended but if you know the IP range(s) you will appear on remotely, you could take the risk and use port forwarding I suppose (choose a strong password and keep the server patched!).

Top
#295125 - 13/03/2007 02:55 Re: Some help on a little project of mine please... [Re: AndrewT]
jimhogan
carpal tunnel

Registered: 06/10/1999
Posts: 2591
Loc: Seattle, WA, U.S.A.
Quote:
... Rather than shifting .mdb data across the wire, personally I would simply use Server 2003's remote desktop connection and merely use the travelling PC as a terminal. AFAIK, you get a bundled 1-user administrator licence for remote desktop. The benefits are that you're reducing the risk of corrupting the .mdb file if your remote connection drops, you are not carrying possibly sensitive data around on a laptop that is easily lost/stolen, everything is taking place on the local server so your remote connection speed just limits your screen updating speed, your remote PC requirements are minimal.....

I read down through the discussion waiting to see someone make the point you make here re: "rather than shifting .mdb data across the wire." And I would say that this is doubly important if, as seems the case, this is a monolithic MS-Access application -- no separation of data and interface. I've never seen folks less happy than some cases of people trying to run monolithic MS-Access apps natively off of a disk far, far away. Separating out data into something like MySQL could improve this, but, for many folks that adds too much complexity relative to scale of what is being done. Remote control (RDP, Terminal services, Citrix) lets you be fairly content with an unmodified LAN-oriented app.

Once your network/VPN bits are sorted out, you might try an A-B comparison. From your remote PC, open the MDB from whatever directory you have shared on box "X". Then run box X from same client via RDP -- opening yoru MDB in that RDP session -- and see if you aren't happier. And no data sloshing around
_________________________
Jim


'Tis the exceptional fellow who lies awake at night thinking of his successes.

Top
#295126 - 13/03/2007 06:33 Re: Some help on a little project of mine please... [Re: AndrewT]
Roger
carpal tunnel

Registered: 18/01/2000
Posts: 5683
Loc: London, UK
Quote:
The Draytek Vigor is a good router. ... I still prefer the Sonicwall TZ170 personally.


At work, we have a Sonicwall as the VPN "server", and the company recommends Drayteks as VPN clients to it.
_________________________
-- roger

Top
#295127 - 13/03/2007 10:48 Re: Some help on a little project of mine please... [Re: Roger]
JBjorgen
carpal tunnel

Registered: 19/01/2002
Posts: 3584
Loc: Columbus, OH
We use a SonicWall Pro 2040 with Enhanced OS here at the office and TZ-710's at each VPN endpoint. Works fantastic, but is a little overkill for what you're doing.

Here's the link to Tony's thread. I believe I originally recommended the SonicWall there. Glad it's still working out ok.

From that same thread, the inexpensive store where I purchase mine.

Top
#295128 - 13/03/2007 12:56 Re: Some help on a little project of mine please... [Re: JBjorgen]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Cheers for the info John! I'll have a good look.

I've also been looking at the SonicWALL website, and albeit more expensive than an ordinary router, I still think these devices are priced reasonably.

I believe the best choice would be either the SonicWALL TZ 150 Wireless or the SonicWALL TZ 170 Wireless. (European pages with detailed spec PDF's here (150) and here (170)

Which one would be the best choice for what I want to use it for? Remember, I would normally never need any more VPN connections than three. (usually only one, possibly two)

What is the difference between those two? I see the 150 only supports site-to-site VPN tunnels (which is what I need I think), and optionally also Global VPN account licences (what is this?).

The 170 wireless seems to support both? There is also talk about 10 node support (2), 25 node (10) and unlimited node support of the 170. I don't see this in the 150's spec sheet. What exactly is this, and do I need it?

I also see both these routers have anti-virus, andti-spyware and intrusion prevention features built-in. Very cool! Of those first two, I never knew this was possible in hardware. Is this reliable? (anti-vir and anti-spyware I mean) Does this mean I do no need to install an anti-virus package on the pc's anymore??

Any other important differences between those routers?

As always, a big thanks for any info you guys can provide!
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295129 - 13/03/2007 13:24 Re: Some help on a little project of mine please... [Re: BartDG]
robricc
carpal tunnel

Registered: 30/10/2000
Posts: 4931
Loc: New Jersey, USA
Just FYI, I have a used SonicWall TZ 170 (non wireless) available for sale if interested. It's a US model. I don't know what would be different other than the power adapter.

It's a 25-user model and has 2 VPN licenses. I don't know how to transfer ownership, but if worst comes to worst, I can just provide the login details for the update/software package service.

I would let it go for $200. I have attached a screen shot of the main status page.


Attachments
295801-170tz.gif (329 downloads)

_________________________
-Rob Riccardelli
80GB 16MB MK2 090000736

Top
#295130 - 13/03/2007 13:36 Re: Some help on a little project of mine please... [Re: robricc]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Quote:
Just FYI, I have a used SonicWall TZ 170 (non wireless) available for sale if interested. It's a US model. I don't know what would be different other than the power adapter.

Thanks for the offer Rob. (good price too!), but sorry, I really need a wireless model.
Quote:

It's a 25-user model and has 2 VPN licenses.

What does this mean? 25 users can connect to this router, but only two of them can be outside clients via VPN? (the 23 others are on the local LAN I mean?)

Quote:

I have attached a screen shot of the main status page.

Thanks for the pic. The gives me some idea of the interface.

Cheers!
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295131 - 13/03/2007 13:39 Re: Some help on a little project of mine please... [Re: BartDG]
robricc
carpal tunnel

Registered: 30/10/2000
Posts: 4931
Loc: New Jersey, USA
Quote:

Quote:

It's a 25-user model and has 2 VPN licenses.

What does this mean? 25 users can connect to this router, but only two of them can be outside clients via VPN? (the 23 others are on the local LAN I mean?)

I'm pretty sure it means there can be 25 local users and 2 VPN users simultaneously. We only have about 16 local nodes, so the limits were never tested.
_________________________
-Rob Riccardelli
80GB 16MB MK2 090000736

Top
#295132 - 13/03/2007 13:53 Re: Some help on a little project of mine please... [Re: robricc]
BartDG
carpal tunnel

Registered: 20/05/2001
Posts: 2616
Loc: Bruges, Belgium
Quote:
I'm pretty sure it means there can be 25 local users and 2 VPN users simultaneously. We only have about 16 local nodes, so the limits were never tested.

That would be more than sufficient for me as well. I would rather have seen three VPN users, but two would do. 25 users is overkill. I need no more than 5.

Thx for the info!
_________________________
Riocar 80gig S/N : 010101580 red
Riocar 80gig (010102106) - backup

Top
#295133 - 13/03/2007 14:01 Re: Some help on a little project of mine please... [Re: BartDG]
robricc
carpal tunnel

Registered: 30/10/2000
Posts: 4931
Loc: New Jersey, USA
Just to be clear, the router originally came with 1 VPN license. A second license was purchased at a later date. No matter what SonicWall model/package you purchase, there is always the option to upgrade things through mysonicwall.com as your needs grow. It's a pretty neat system.
_________________________
-Rob Riccardelli
80GB 16MB MK2 090000736

Top
Page 1 of 2 1 2 >