Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Small office needs: remote backup, networked disk cloning
New Posts  All Forums:Forum Nav:

Small office needs: remote backup, networked disk cloning

post #1 of 13
Thread Starter 
Hello all,

I work for a small design firm of 12 people. We are very much having growing pains since our start-up days of 3 people. Unfortunately, some of our bad habits have grown with us.

The office network consists of a T1 line being run on a Cisco 2960 G series and a Cisco 2100 series WLAN controller.

We were recently awarded a large contract from a high-profile company to develop marketing for a product still in development. NDAs were required and we want to better secure our network and back-up procedures.

We have 20 computers on the network and 12 of them need to be backed up and secured daily. Our current back-up method is a networked drive on a QNAP-TS-659-PRO+ (NAS).

All of our anti-virus, malware, and firewall needs are monitored by the COMODO software suite.

Quote:
These are our current NEEDS based solely on assumption and lack of IT business level knowledge.

1. We want to purchase a server that handles nightly backups of specific drive content. This will include all our financial information as well as most obviously the work we are currently doing.

2. We are interested in the capabilities of said server also providing more robust business level firewall/anitvirus/malware with real-time inspection of network activity (at a level greater than COMODO currently provides).

3. We would like to also have the capability to push down disk imaging/cloning in case any computer becomes infected. This namely occurs through email viruses and the student lab we have as we provide design workshops for high-school aged kids through our non-profit work.
I am currently tasked with doing the research for the senior members of our firm. Our budget remains undefined as we are open to spending precisely what it takes to accomplish these tasks at an acceptable level for our needs with room to grow.

What server configurations would you recommend as well as any software suites that would help us develop a more robust business level network? It would be helpful if any software recommend would also feature intuitive GUI. There is no room in the budget to hire a full-time IT guy. If there are any other questions you would like to know from me please feel free to ask. I will be monitoring this thread regularly.

Thanks a lot OCN!
post #2 of 13
I guess since no one else is helping I will put a few things out there to get you started.

For the disk imaging if all the computer are the same I would set them up in their own network and then just use Ghost to push the image to them before each class.

As far as back up you are going to want to go with some sort of off site back up plan. Either a tape back up of off site storage that is updated nightly.

Now may not be the time but as some point if you continue to grow you are going to have to look at setting up an active directory and domain controllers (assuming you are using windows). This will allow you require log in for the pc's. Does not sound like you are using anything for a server now. You will need to get away from storing things locally on pc's and start saving things to a folder on a network share. I know you said there is not room for a full-time IT person. Have you thought about a part-time IT person. You are trying to grow a lot here and it would be better to have a professional help you get things started correctly. You do not want to waste money on products that you may out grow quickly.

For security you already have cisco equipment maybe look at getting a cisco ASA for a firewall.
post #3 of 13
Ok first of all, you don't want your server providing the services you mentioned. You want to a hardware based firewall for the network.

Although Cisco ASA could be a viable solution it isn't necessarily the best option for your needs.

I would strongly recommend even if you can't afford a full-time IT Professional, bring one in as a consultant.

Now getting a little to your 3 main questions and suggested recommendations.
Quote:
Originally Posted by Internets;13564984 
We have 20 computers on the network and 12 of them need to be backed up and secured daily. Our current back-up method is a networked drive on a QNAP-TS-659-PRO+ (NAS).

All of our anti-virus, malware, and firewall needs are monitored by the COMODO software suite.


I am currently tasked with doing the research for the senior members of our firm. Our budget remains undefined as we are open to spending precisely what it takes to accomplish these tasks at an acceptable level for our needs with room to grow.

What server configurations would you recommend as well as any software suites that would help us develop a more robust business level network? It would be helpful if any software recommend would also feature intuitive GUI. There is no room in the budget to hire a full-time IT guy. If there are any other questions you would like to know from me please feel free to ask. I will be monitoring this thread regularly.

You would want something the equivilant of the following for a server, recommend getting 2.
HP ProLiant DL380 G7 - Server - rack-mountable - 2U - 2-way - RAM 0 MB - SAS - hot-swap 2.5" - no HDD - ATI ES1000 - Gigabit Ethernet - Monitor : none - CTO Processor upgrade - 2 x Intel Xeon X5680 / 3.33 GHz - L3 12 MB - factory integrated, 12x HP - Memory - 8 GB - DIMM 240-pin - DDR3 - 1333 MHz / PC3-10600 - CL9 - registered, 6x HP Dual Port Enterprise - Hard drive - 146 GB - hot-swap - 2.5" SFF - SAS-2 - 15000 rpm, HP NC364T PCI Express Quad Port Gigabit Server Adapter - Network adapter - PCI Express x4 - Ethernet, Fast Ethernet, Gigabit Ethernet - 10Base-T, 100Base-TX, 1000Base-T - 4 ports - factory integrated

Install VMWare and set up the "servers" you need. Yes I specified plural. It sounds like you have 1 large work-group and no domain, assuming your using Microsoft for Servers. So you will need to set up Active Directory. You will need 2 virtual servers for Domain Controllers, you will need 1 virtual server for your file server, you will need 1 virtual server for AV, you will need 1 virtual server for desktop imagining, 1 virtual server for development work. The other physical server will serve as back-up to the other. If your wanting to continue backing up to disc you may need to expand your NAS or get an actual SAN for backups. The solution mentioned will eliminate the need to back up those 12 devices as all work would be saved to the network, meaning you only have to back up 2 devices. If you don't expand the NAS or go with a SAN, you can back up to tape, more than likely it would be LTO-5.

As for firewalls, like mentioned before you could go with a Cisco ASA or I would also consider a Juniper SRX. The question comes down to do you need SSL VPN capabilities or is IPSec VPN sufficent?
If you need SSL VPN then I would recommend the ASA, as the SRX does not have that feature (other Juniper firewalls do but are major overkill for your size of network).
Recommended Cisco ASA 5510 specs, (approx $7k US)
License for SSL VPN (approx $4k US)
AnyConnect Mobile (approx $250 US)
IPS SVC with AIP-SSM-20, 3DES/AES-15 (approx $3k US)
SMARTNET (minimum 8x5 Next Business Day)

Recommended Juniper SRX240 (approx $3500 US)
J-Care Next Day 12X5 (approx ($250 US)
IDP (approx $1500 US)
Websense (approx $1k US)
Anti-Virus (approx $1k US)
Anti-Spam mail (approx $1k US)

As you can see 2 different purposes/needs/costs and why you may want to bring a consultant in to help you best determine what your business needs are.

Hope this helps, also see my sig on how to properly deploy a network with security in mind.
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
post #4 of 13
Why not store all the data on the NAS and have the users access it off the network share?
    
CPUMotherboardGraphicsRAM
C2D T7100 1.8 ghz (undervolted) ummm... Dell Intel X3100 2 x 1gb 667mhz 
Hard DriveOptical DriveOSMonitor
Fujitsu 7200 RPM 120gb CD-RW/DVD dual boot Vista business 1440x900 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
C2D T7100 1.8 ghz (undervolted) ummm... Dell Intel X3100 2 x 1gb 667mhz 
Hard DriveOptical DriveOSMonitor
Fujitsu 7200 RPM 120gb CD-RW/DVD dual boot Vista business 1440x900 
  hide details  
Reply
post #5 of 13
Are you sure he needs every piece of that? I get a hardware firewall, and I would never tell a company no to one, but he could get all the other services taken care of on a smaller server. With only 12 computers needing to be backed up he could implement a lesser powered server running say, Small Business server. It would be nice to have 20K to drop on this project, but most small firms don't have that kind of budget for one project, but for the entire years IT projects.

I get where you're coming from, but from a purchasing perspective, that's a lot to drop on this. He could purchase home server and get the backups and file storage taken care of quickly(only issue is WHS only allows for 10 computers to be backed up, so probably not the best solution). May need to make sure your managed switches are GB all the way if you want the backups to be done before next business day. Either way, I disagree that the larger amount your suggesting is needed.
Edited by herkalurk - 5/20/11 at 6:34am
post #6 of 13
Why I recommend having a consultant come in to do a full analysis to determine the business needs. Regardless they will need at minimum 3 servers, virtual or physical. If they go with the beefier boxes mentioned, those servers should be able to handle up to 20 VM's each. Yeah they could downgrade some of the components server wise (servers have not been my specialty since 1999, networking and security has since 2000)

@ Trueg50 the NAS may not meet the needs.

EDIT and that solution mentioned would cost approx $20-25k US minus labor of coarse.
Edited by bratas - 5/20/11 at 6:44am
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
post #7 of 13
Quote:
Originally Posted by bratas View Post
Why I recommend having a consultant come in to do a full analysis to determine the business needs. Regardless they will need at minimum 3 servers, virtual or physical. If they go with the beefier boxes mentioned, those servers should be able to handle up to 20 VM's each. Yeah they could downgrade some of the components server wise (servers have not been my specialty since 1999, networking and security has since 2000)

@ Trueg50 the NAS may not meet the needs.

EDIT and that solution mentioned would cost approx $20-25k US minus labor of coarse.
I get where you're coming from, but needing 20 VMs doesn't sound like the solution either. Like I said, the network side your dead on, and your certs show their worth, but on the server side, I think you're over powering them. Instead of a server that has lots of power, sounds like they need one with mid level power and lots of redundant storage for backups and shared files like the finance, as well as some soft of offsite backup solution. Honestly, I think they could do this for less that $10K, but having a consultant come in would be the best solution.
post #8 of 13
Speaking of consultants, many of the larger shops IBM, HP, Cisco - offer services where a consultation and needs assessment is included in the solution. Basically they will come in and give you a minimal assessment for free with the hopes of winning your business. I know it may seem like you are too small to warrant that type of attention but small businesses are an increasing sector for the big guys and the odds of you sticking with the person you started out with are too high for you to be overlooked.

Might want to look into that.
post #9 of 13
Quote:
Originally Posted by tats;13573307 
Speaking of consultants, many of the larger shops IBM, HP, Cisco - offer services where a consultation and needs assessment is included in the solution. Basically they will come in and give you a minimal assessment for free with the hopes of winning your business. I know it may seem like you are too small to warrant that type of attention but small businesses are an increasing sector for the big guys and the odds of you sticking with the person you started out with are too high for you to be overlooked.

Might want to look into that.

Yeap, not to mention all the free **** they give you normally too tongue.gif
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
post #10 of 13
Quote:
Originally Posted by Internets View Post
The office network consists of a T1 line being run on a Cisco 2960 G series and a Cisco 2100 series WLAN controller.
That dosen't make any sense.
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Small office needs: remote backup, networked disk cloning