Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Widnows DCs Firewalled

Posted on 2004-09-18
2
Medium Priority
?
282 Views
Last Modified: 2010-04-19
Hey All,

   I have a secure subnet (behind a firewall) in my network and both my DCs are in the outside portion.   We're having trouble authenticating shares (you might not have permission to access this network share), and I'm sure there will be other issues with AD....   The network setup is this:

Internet
  |
Firewall
192.168.1.xxx
  |
AD Controllers & some XP Clients 192.168.1.x
  |
192.168.1.xxx
Inside Firewall running RHEL 3 & iptables firewall\
192.168.210.x
  |
some XP Clients & some windows servers 192.168.210.x

   How can I use windows services without access to the DCs & my AD?
0
Comment
Question by:smithware
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 51

Accepted Solution

by:
Netman66 earned 1500 total points
ID: 12093775
Place one DC inside the second firewall.  Create rules through the second firewall so that the other DC can connect to it point-to-point.

You'll need to understand what ports should be opened between these servers.

Here is a start at determining what is used:  http://support.microsoft.com/default.aspx?scid=kb;en-us;832017&Product=winsvr2003

The idea is to use the inside server to connect to and mount shares from the .1.xxx subnet as volumes in empty NTFS folders.  This will allow internal clients to only map to their local server for resources.

How to mount: http://support.microsoft.com/default.aspx?scid=kb;en-us;323424&Product=winsvr2003

0
 

Author Comment

by:smithware
ID: 12108198
Although I accepted this answer, it should be noted that the answer to the question was actually create an lmhosts file on the clients to point to the domain controllre.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
In response to a need for security and privacy, and to continue fostering an environment members can turn to for support, solutions, and education, Experts Exchange has created anonymous question capabilities. This new feature is available to our Pr…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question