Jamf Nation Community

@alexwyatt, when you say manage.. Do you mean image?

You can NetBoot over VLANs by adding IPHelpers. http://cisconet.com/tcpip/dhcp/107-how-to-use-ip-helper-address-to-connect-remote-dhcp-server.html

Else, if it's communication with the JSS.. Then are you using an FQDN? Like JSS.mycompany.com? If not, & both sites use the same DNS.. Then I'd suggest you use the FQDN.. Then the clients should be able to connect (barring firewall).

Lastly, if bandwidth is a concern. You could have a second server at the other site. We have 11 mac servers, each site uses it's local server. All clients contact the JSS hosted in our central site.

roadrunner2348: Well maybe Bonjour isn't the problem...but Casper is definitely broadcasting Bonjour services so I always thought that might be it (especially upon discovering that Bonjour doesn't work seamlessly through different subnets). Maybe when it was first set up (prior to my tenure here) it was just done in such a way that things didn't work for no apparent reason

bentoms: Perhaps the FQDN is the real problem, as we do in fact have a separate DNS set up for each building. I've been meaning to switch to that over the "casper.local", and planned to do it this summer, so if I'm lucky that'll fix all of our problems

Bandwidth could be an issue depending on how demanding things are, but I'm not sure since we haven't implemented a lot of Casper features to their fullest yet. I'm not quite sure what you mean about your setup though. You say you have a separate server in each location, which is what I'm considering. When you say all the clients work with a central JSS, do you mean that each of those 11 servers is managed via a single JSS on the central server, or do you mean that each iPad/Mac you manage communicates with central? If the latter...I'm not sure where the bandwidth savings come from. Could you help me out? :)

EDIT 4/28: To answer your question, I do *not* mean "image". I'd just like for a...satellite server at the second building, which would handle all the iPad interaction, but still took orders/settings from the main server. Failing that, I could just have two servers managed completely separately...but that'd be a certificate nightmare I'm sure!

@alexwyatt, we have 1 JSS for all macs to connect to for polices etc. On each site we have a mac server acting as a distribution point for imaging & for the clients to download packages. (So the data is local). The clients then use the local server as assigned by it's network segment.

I'd suggest you setup your JSS with an FQDN on both DNS servers, (the same FQDN). That way client devices in both buildings should be able to communicate with the JSS, (as long as all the needed ports are open if there is a firewall in place).

If you're looking at just managing iDevices, then the bandwidth usage will be minimal unless your hosting in house apps. Even then one server may suffice.

If your looking at managing macs too, I'd suggest a second server in the other bundling.. With network segments setup to point clients to use that server for NetBoot, imaging, packages & software updates.

In fact, for a level of redundancy I'd suggest a server in each location anyway. That way you can set the distribution points to fail over between each other (in case of an outage). I'd also backup the JSS's DB backups to the second server so it can be made into a JSS incase the JSS server goes down.