What does this mean for me?To operate DWOS at multiple sites we have a couple of options:
- Single Site
- Independent Sites
Single SiteIn a single site deployment, the DWOS Server is installed on a server that all clients, including local and remote can access. This is the most common way of deploying due to ease of setup and a single server to maintain and backup. In order for this to work for remote sites or remote employees, they must be able to connect to the DWOS server. Since the DWOS server resides on the primary sites network it will not be accessible by anyone externally for security reasons. There are two commons ways of allowing access:
VPN allows a secure tunnel to be created between the two sites and the two sites act as if they are physically on the same network. VPN access is safe and a very common way of connecting clients. The benefits of a VPN is the security and sharing of resources. With the VPN you can share network resources across the two connected networks, including printers, shared drives, and connection to servers that are normally always internal, like active directory or exchange. The downfall to this solution is the complexity and cost of setting up a VPN if your business does not have one now. The cost has greatly decreased over the years and the primary piece of hardware you need now is just a firewall(s) that can support VPN connections.
2. Firewall Redirection
Firewall Redirection is similar to how a cloud based product would work by basically opening up the firewall ports used for the DWOS Client to connect to the DWOS Server. This would allow traffic to flow from the internet to the DWOS Server. The primary site hosting the DWOS Server would behave as normal and would not be aware of the difference. The primary sites firewall must be capable of redirecting port based traffic from the internet to the DWOS Server, which is supported by most all firewalls on the market today. The benefits of this solution is the simplicity and cost. The downside is security, though this can be mitigated to an acceptable level by utilizing a few common tricks like not using well known ports and restricting what IP addresses can connect to your server. This method is typically faster than VPN, but not as secure.
Single site deployment provides the simplicity of a single server to maintain, backup, and upgrade. However, site reliability and system uptime can be impacted in a single site deployment if the server connection goes downs and a remote site is unable to connect to the primary site. Then the remote site will not be able to utilize the system, i.e. DWOS, until the server is back on-line. Another issue with single site may be speed, this will be more dependent on the connection speeds at the primary and remote sites.