Hello,
I have one new forest and site up and running.
this single site has one DC (ws 2012) with AD, DHCP, DNS, file, AC CA. Direct access and vpn (wizard walkthrough and working) with subnet 10.10.0.0 / 16
this site is de main office and has an fix public IP, and is behind a ISP managed Router. (the ports and protocol for VPN & direct access are forward to the WS2012 server) I can connect from a public network with vpn to this site. These and the new site
have no "hardware VPN tunneling hardware" so I want to us the RRAS in the WS2012 to accomplish this.
In "sites and services" I have created for the moment 2 sites one with the subnet 10.10.0.0 /16 (main office) and renamed "default site" to the appropriate name
and one with 10.11.0.0 /16 for the new site and give it a name.
then I installed de new WS2012 in the main site en promoted it to be also a DC and dhcp and dns,
so it would receive a computer certificate an domain policy of the first DC in de main office.
No I want to take de new WS2012 out to de new site (with public changing ip (I have Dyndns for that)) this network is also behind a ISP managed modem/router/nat device. I will also look to forward the necessary ports and protocol and connect it to the main private subnet with the vpn site-to-site function of the ws2012 server. that's where I am stuck. I have look over the internet and found numerous examples to connect a site-to-azure but not site-to-site with the native ws2012 software. I think I have to bring op the vpn tunnel before I can do al the other settings like AD replication, DFS file replication .. ...
I have working with AD for the past 8 years but never used site and services ...
If I open up the RRAS console I do not find where I can define the vpn tunnel with the endpoints and subnet, if I use the remote access wizard I (with is for client connection not for site to site) I do not find a option to configure site-to-site...
both servers have 1 NIC, this setup is for a non profit social enterprise, and this way I can manage al the user en clients from on domain, and there is a possibility to share document to each other instead of using Googles drive or drop box, :( in the future there is one main office and 6 sub sites across town, no it is really hard to manage everything because all the client are in different workgroups with one NAS device per location :-(. Changing to Azure is no option here there is no funding for that, I can get cheap licensing and hardware because thy are registered as "social ware VZW".
can any help me with setting up this Forest wit sites across town, and for the easy configuration one domain name is adequate for the forest, so I do not think I need sub domain names, unless this is necessary of a technical point of view (direct access for the site clients, replication, .... ), or are there some partners that can teach me this on site ? (Belgium -West-Flanders ) I can pay a small amount if necessary.
I would appreciate faze by faze help,
if any info is still missing pleas give me a sign.
Thank you very, very much.
(sorry for my grammatical errors I am native Dutch speaking )