• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 293
  • Last Modified:

Widnows DCs Firewalled

Hey All,

   I have a secure subnet (behind a firewall) in my network and both my DCs are in the outside portion.   We're having trouble authenticating shares (you might not have permission to access this network share), and I'm sure there will be other issues with AD....   The network setup is this:

Internet
  |
Firewall
192.168.1.xxx
  |
AD Controllers & some XP Clients 192.168.1.x
  |
192.168.1.xxx
Inside Firewall running RHEL 3 & iptables firewall\
192.168.210.x
  |
some XP Clients & some windows servers 192.168.210.x

   How can I use windows services without access to the DCs & my AD?
0
smithware
Asked:
smithware
1 Solution
 
Netman66Commented:
Place one DC inside the second firewall.  Create rules through the second firewall so that the other DC can connect to it point-to-point.

You'll need to understand what ports should be opened between these servers.

Here is a start at determining what is used:  http://support.microsoft.com/default.aspx?scid=kb;en-us;832017&Product=winsvr2003

The idea is to use the inside server to connect to and mount shares from the .1.xxx subnet as volumes in empty NTFS folders.  This will allow internal clients to only map to their local server for resources.

How to mount: http://support.microsoft.com/default.aspx?scid=kb;en-us;323424&Product=winsvr2003

0
 
smithwareAuthor Commented:
Although I accepted this answer, it should be noted that the answer to the question was actually create an lmhosts file on the clients to point to the domain controllre.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: CompTIA Cloud+

The CompTIA Cloud+ Basic training course will teach you about cloud concepts and models, data storage, networking, and network infrastructure.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now