<div>
<div class="content wysiwyg-content">
I have a 3com firewall that has vpn capabilities, I want to use radius for authentication. &nbsp;I will install <br />
IAS(radius) on a windows 2000 server. &nbsp;Now the question is, where should I place the win2000 server; <br />
On the DMZ or my LAN? &nbsp;Is there any reason I should not place it on my LAN?<br />
<br />
Secondly, can the IAS server be a DC or is that a security risk. &nbsp;<br />
<br />
Thanks much<br />
ptran 
</div>
</div>


I have a 3com firewall that has vpn capabilities, I want to use radius for authentication.  I will install 
IAS(radius) on a windows 2000 server.  Now the question is, where should I place the win2000 server; 
On the DMZ or my LAN?  Is there any reason I should not place it on my LAN?

Secondly, can the IAS server be a DC or is that a security risk.  

Thanks much
ptran 

radius question

Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.

Networking

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

Internet Protocol Security (IPsec) is a protocol suite for secure Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. IPsec includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. IPsec can be used in protecting data flows between a pair of hosts (host-to-host), between a pair of security gateways (network-to-network), or between a security gateway and a host (network-to-host). IPsec is an end-to-end security scheme operating in the Internet Layer of the Internet Protocol Suite.