用于 QuickBooks 的 AWS EC2
[英]AWS EC2 for QuickBooks
问题描述
AWS and.network noob. 
AWS 和.network 菜鸟。 I've been asked to migrate QuickBooks Desktop Enterprise to AWS.我被要求将 QuickBooks Desktop Enterprise 迁移到 AWS。 This seems easy in principle but I'm finding a lot of conflicting and confusing information on how best to do it.这在原则上似乎很容易,但我发现了很多关于如何最好地做到这一点的相互矛盾和令人困惑的信息。 The requirements are:要求是:
- Setup a Windows Server using AWS EC2使用 AWS EC2 设置 Windows 服务器
- QuickBooks will be installed on the server, including a file share that users will map to. QuickBooks 将安装在服务器上,包括用户将 map 到的文件共享。
- Configure VPN connectivity so that the EC2 instance appears and behaves as if it were on prem.配置 VPN 连接,使 EC2 实例的出现和行为就像在本地一样。
- Allow additional off site VPN connectivity as needed for ad hoc remote access根据需要允许额外的异地 VPN 连接以进行临时远程访问
- Cost is a major consideration, which is why I am doing this instead of getting someone who knows this stuff.成本是一个主要的考虑因素,这就是为什么我这样做而不是找一个知道这些东西的人。
The on-prem.network is very small - one Win2008R2 server (I know...) that hosts QB now and acts as a file server, 10-15 PCs/printers and a Netgear Nighthawk router with a static IP. on-prem.network 非常小 - 一台 Win2008R2 服务器(我知道......)现在托管 QB 并充当文件服务器,10-15 台 PC/打印机和一个带有 static IP 的 Netgear Nighthawk 路由器。
My approach was to first create a new VPC with a private su.net that will contain the EC2 instance and setup a site-to-site VPN connection with the Nighthawk for the on-prem users.我的方法是首先使用包含 EC2 实例的私有 su.net 创建一个新的 VPC,并为本地用户设置与 Nighthawk 的站点到站点 VPN 连接。 I'm unclear as to if I also need to create security group rules to only allow inbound traffic (UDP,TCP file sharing ports) from the static IP or if the VPN negates that need.我不清楚我是否还需要创建安全组规则以仅允许来自 static IP 的入站流量(UDP、TCP 文件共享端口),或者如果 VPN 否定了该需求。
I'm trying to test this one step at a time and have an instance setup now.我正在尝试一次测试这一步,现在就设置一个实例。 I am remote and am using my current IP address in the security group rules for the test (no VPN yet).我在远程并且在安全组规则中使用我当前的 IP 地址进行测试(还没有 VPN)。 I setup the file share but I am unable to access it from my computer.我设置了文件共享,但无法从我的计算机访问它。 I can RDP and ping it and have turned on the firewall rules to allow NB and SMB but still nothing.我可以 RDP 和 ping 它并打开防火墙规则以允许 NB 和 SMB 但仍然没有。 I just read another thread that says I need to setup a storage gateway but before I do that, I wanted to see if that is really required or if there's another/better approach.我刚读到另一个帖子说我需要设置一个存储网关,但在我这样做之前,我想看看这是否真的需要,或者是否有另一种/更好的方法。 I have to believe this is a common requirement but I seem to be missing something.我不得不相信这是一个普遍的要求,但我似乎遗漏了一些东西。
1 个解决方案
解决方案1
2 2020-10-09 23:39:28
This is a bad approach for QuickBooks.这对 QuickBooks 来说是一个糟糕的方法。 Intuit explicitly recommends against using QuickBooks with a file share via VPN: Intuit 明确建议不要使用 QuickBooks 通过 VPN 进行文件共享:
Networks that are NOT recommended
Virtual Private Network (VPN) Connects computers over long distances via the Internet using an encrypted tunnel.
From here: https://quickbooks.intuit.com/learn-support/en-us/configure-for-multiple-users/recommended.networks-for-quickbooks/00/203276从这里: https://quickbooks.intuit.com/learn-support/en-us/configure-for-multiple-users/recommended.networks-for-quickbooks/00/203276
The correct approach here is to host QuickBooks on the EC2 instance, and let people RDP (remote desktop) into the EC2 Windows server to use QuickBooks.这里正确的做法是在EC2实例上托管QuickBooks,让人RDP(远程桌面)进入EC2 Windows服务器使用QuickBooks。 Do not let them install QuickBooks on their client machines and access the QuickBooks data file over the VPN link.不要让他们在客户端机器上安装 QuickBooks 并通过 VPN 链接访问 QuickBooks 数据文件。 Make them RDP directly to the QuickBooks server and access it from there.使它们直接通过 RDP 连接到 QuickBooks 服务器并从那里访问它。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.