Solved

Lan to Lan Routing

Posted on 2001-08-23
15
354 Views
Last Modified: 2012-06-27
I have a network (ie 10.0.0.1) Domain10 that I want to connect to network (ie 11.0.0.1) Domain11 I am using MS 2000 servers and the server I would like to do the routing is an MS ISA member server of Domain10 but also has a nic with access to Domain11.  I would like to have Domain1 clients access Domain2 but not the reverse.  How do I accomplish this?
0
Comment
Question by:keypusher
  • 3
  • 3
  • 2
  • +4
15 Comments
 
LVL 10

Accepted Solution

by:
HDWILKINS earned 54 total points
Comment Utility
Is there any distance involved??  How many computers involved.

I'd use a 'Trust Relationship' and let Domain2 TRUST Domain1 but not the reverse and not use the router because I don't think a router applies to your task?  
0
 
LVL 4

Assisted Solution

by:jwalsh88
jwalsh88 earned 52 total points
Comment Utility
You dont need a router, but you do need all computers to be able to see each other, in otherwords they all need to be plugged into the same physical network.  But no routers are needed and HDWILKINS gave you the solution in using the Trust Relationships.
0
 
LVL 8

Assisted Solution

by:scraig84
scraig84 earned 52 total points
Comment Utility
You don't need a router to communicate between 10.0.0.1 and 11.0.0.1????  I didn't see any mention of supernetting here, so unless keypusher has a 7 bit mask or smaller, a router is needed as well.  I agree that you can perform the security portion with trusts, but the communication will need a router.  HDWILKINS asked the right question - what is the distance involved.  Also, what media?  Are we talking two Ethernet LANS in the same building?  On the same wire?  It could be as simple as a single Ethernet interface on a router with (argh!!) a secondary interface.
0
 
LVL 4

Expert Comment

by:jwalsh88
Comment Utility
I am sorry I should have explained myself better, if you are talking trust relationships between domains, routers are not needed.  You could have everything on one IP subnet.  but in this case it appears that you already have multiple subnets so, like scraig84 said, you would need a router to allow them to talk with each other.
0
 
LVL 3

Expert Comment

by:cfarca
Comment Utility
From the domain access point of view, you can resolve this using one way trust relation ( Domain2 trust Domain1). From the communication point of view, you can achive your gool by enabling IP Forward on a multihomed server (a server with 2 Nic's, connected to the both subnets); this will work only if you dont have to many users in your Domain1 which will access resources in Domain2. Otherwayyou will need to install a router to do the packets transfer between the both subnets.
Hope this will help, Chris.
0
 

Assisted Solution

by:keypusher
keypusher earned 52 total points
Comment Utility
These are two ethernet lan is the same building and practically in the same room.

How do I enable IP Forwarding (To the 11 network?)? I already have a server with 2 nics connected to both networks.
0
 
LVL 10

Expert Comment

by:HDWILKINS
Comment Utility
Change the IPs on the smaller network to a range within the same subnet as the first network and set up a Trust Relationship.  As far as I know, that is the correct answer to your problem.

HW
0
VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

 
LVL 10

Expert Comment

by:HDWILKINS
Comment Utility
Change the IPs on the smaller network to a range within the same subnet as the first network and set up a Trust Relationship.  As far as I know, that is the correct answer to your problem.

HW
0
 
LVL 8

Expert Comment

by:scraig84
Comment Utility
If you are going to use a server, it depends on the OS.  NT4 has a checkbox somewhere in the IP configuration in the network control panel.  2000 has the Routing and Remote Access Services that you configure from the MMC under Administrative Tools.

Since I have no idea about the volume of traffic here though, I would warn that if it is going to be fairly high, you may want to consider using a real router that was meant for the job.
0
 

Author Comment

by:keypusher
Comment Utility
How do I configure the Routing and Remote Access in 2000 to accomplish this.
0
 
LVL 3

Expert Comment

by:cfarca
Comment Utility
Check this article, it show step-by-step how to do it.
http://support.microsoft.com/support/kb/articles/Q178/9/93.ASP?SD=TECH
Hope this will help, chris.
0
 

Author Comment

by:keypusher
Comment Utility
This is good but it looks like an expaination of going from 10 to 10 instead of 10 to another number/network like 11.
0
 

Expert Comment

by:amp072397
Comment Utility
keypusher:

You have many open questions:

http://www.experts-exchange.com/jsp/qShow.jsp?qid=20159419
http://www.experts-exchange.com/jsp/qShow.jsp?qid=20173252
http://www.experts-exchange.com/jsp/qShow.jsp?qid=20179072
http://www.experts-exchange.com/jsp/qShow.jsp?qid=20182130
http://www.experts-exchange.com/jsp/qShow.jsp?qid=20184408
http://www.experts-exchange.com/jsp/qShow.jsp?qid=20181662

To assist you in your cleanup, I'm providing the following guidelines:

1.  Stay active in your questions and provide feedback whenever possible. Likewise, when feedback has not been provided by the experts, commenting again makes them receive an email notification, and they may provide you with further information. Experts have no other method of searching for questions in which they have commented, except manually.

2.  Award points by hitting the Accept Comment As Answer button located above and to the left of that expert's comment.

3.  When grading, be sure to read:
http://www.experts-exchange.com/jsp/cmtyQuestAnswer.jsp#3
to ensure that you understand the grading system here at EE. If you grade less than an A, you must explain why.

4.  Questions that were not helpful to you should be PAQ'd (stored in the database for their valuable content?even if not valuable to you) or deleted. To PAQ or delete a question, you must first post your intent in that question to make the experts aware. Then, if no experts object after three full days, you can post a zero-point question at community support to request deletion or PAQ. Please include the link(s) to the question(s).
CS:  http://www.experts-exchange.com/jsp/qList.jsp?ta=commspt
At that point, a moderator can refund your points and PAQ or delete the question for you. The delete button does not work.

5.  If you fail to respond to this cleanup request, I must report you to the Community Support Administrator for further action.

Our intent is to get the questions cleaned up, and not to embarrass or shame anyone. If you have any questions or need further assistance at all, feel free to ask me in this question or post a zero-point question at CS. We are very happy to help you in this task!


thanks!
amp
community support moderator

9/18
0
 

Expert Comment

by:CleanupPing
Comment Utility
keypusher:
This old question needs to be finalized -- accept an answer, split points, or get a refund.  For information on your options, please click here-> http:/help/closing.jsp#1
EXPERTS:
Post your closing recommendations!  No comment means you don't care.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Suggested Solutions

What’s a web proxy server? A proxy server is a server that goes between clients and web servers, used in corporate to enforce corporate browsing policy and ensure security. Proxy servers are commonly used in three modes. A)    Forward proxy …
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now