Question : Multiple Site Network with Small Business Server 2003?

Hi All,

I have two sites that are going to be linked together using a hardware to hardware VPN (using CISCO Pix routers). Both sites have an ADSL connection (1500/256).

The main goal is to be able to transfer large files (100Mb +) from one site to another. Because of the size of these files and the relatively slow internet connection, I figured the best way of achieving this would be to set up FTP servers at each site so that files can be left to transfer in the background or overnight etc.

So my original plan was to have an Windows SBS 2003 in both sites and have two very separate domains/networks. I would set up a FTP server on both servers that would allow people from the other site to upload/download files using an FTP client via the VPN. Each SBS 2003 Server would be NAT devices and would run ISA. ISA would have rules in place to allow the FTP traffic through from the VPN.

So far this sounds like a good solution and I would have no problems implementing it. The only problem is that the manager works in both offices and has a laptop. He would expect to be able to log in using his domain profile at either site and have access to his profile, email and all shares on both servers. For this to be able to happen, we would need to make the two domains part of the one forest (i.e. connect the domain controllers) so that when he logs on, he gets access to his profile, email server etc.

So unless what I have said so far is wrong (or maybe there is not a better way of doing it), I need two domain controllers, one in each site, that is part of the one forest. Windows 2003 SBS was my product of choice because there is less than 10 users in each site, and also because we need Exchange and SQL. I am wondering if it is possible to connect a SBS2003 box (DC for myDomainA.local) in one site, to another SBS2003 box (DC for myDomainB.local) in another site? If not, I am stuck and would appretiate some suggestions.

Thanks in advance,

Pete

Answer : Multiple Site Network with Small Business Server 2003?

You can't, sorry. Trusts aren't possible in SBS, and the SBS has to be the forest root.

Frequently Asked Questions About Windows Small Business Server 2003
http://www.microsoft.com/windowsserver2003/sbs/techinfo/overview/generalfaq.mspx

Q. Can I use more than one Windows Small Business Server 2003 server in the same company?
A. There can be only one Windows Small Business Server 2003 server in a domain. Each Windows Small Business Server 2003 server is typically connected to the Internet either directly, or via a firewall. Windows Small Business Server 2003 does not support trusts between domains; therefore, user names and resources could not be shared between those Windows Small Business Server 2003 servers. Further, Windows Small Business Server 2003 installs at the root of the Active Directory forest, and it cannot be demoted, or have the flexible single-master operation (FSMO) roles removed.

You could put the SBS into one location, and add a W2k3 server as a DC at the other location, though:

Q. Can I effectively implement Windows Small Business Server 2003 in an environment that connects one site to another using a slow data link?      
A. Yes. One way is to install Windows Server 2003 at the remote site, and then configure it as a replica domain controller. This enables Active Directory directory service information to replicate at the remote site, so that authentication requests do not have to travel over the slow data link. Also, using Outlook 2003 in Cached Exchange mode minimizes the amount of e-mail traffic between remote clients and the server.