Solved

Windows Domain access from DMZ

Posted on 2008-06-11
7
714 Views
Last Modified: 2008-07-03
Have a web server in a DMZ. We can access web pages on the web server from the internal net and the web server can see a database server on the internal side. The web server can ping the DC, but windows authentication does not work. I need to be able to browse files on the web server in the DMZ.

access-list inside_nat0_outbound extended permit ip 10.4.0.0 255.255.240.0 172.31.4.0 255.255.255.0

access-list DMZ_outbound extended permit ip host 172.31.4.127 host 10.4.0.12 (IP of DC)

Is there something else i need to add so that the web server in the DMZ can authenticat to the DC?

Thanks, Bill
0
Comment
Question by:whbaxter
  • 2
7 Comments
 
LVL 23

Accepted Solution

by:
debuggerau earned 500 total points
ID: 21765637
Have you tried joining the domain?
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 21765820
there is a whole load of ports here that you might need to open
http://support.microsoft.com/?id=179442
0
 

Author Comment

by:whbaxter
ID: 21768673
I joined the the server to the domain prior to moving it into the DMZ.

I will look at the ports and give that a try.

Thanks
0
 

Author Comment

by:whbaxter
ID: 21771622
I have removed the DMZ web server from the Domain and created a local user account on this server. this will serve my needs for now.

thanks for the responses.

this question can be closed.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Account lockouts 22 68
active directory 1 37
Federation ID format? 3 31
Script Extension require update AD computer location base on sites subnet 5 28
Companies that have implemented Microsoft’s Active Directory need to ensure that the Active Directory is configured and operating properly. If there are issues found and not resolved, it eventually leads the components to fail or stop working and fi…
This script can help you clean up your user profile database by comparing profiles to Active Directory users in a particular OU, and removing the profiles that don't match.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now