Solved

Windows Domain access from DMZ

Posted on 2008-06-11
7
715 Views
Last Modified: 2008-07-03
Have a web server in a DMZ. We can access web pages on the web server from the internal net and the web server can see a database server on the internal side. The web server can ping the DC, but windows authentication does not work. I need to be able to browse files on the web server in the DMZ.

access-list inside_nat0_outbound extended permit ip 10.4.0.0 255.255.240.0 172.31.4.0 255.255.255.0

access-list DMZ_outbound extended permit ip host 172.31.4.127 host 10.4.0.12 (IP of DC)

Is there something else i need to add so that the web server in the DMZ can authenticat to the DC?

Thanks, Bill
0
Comment
Question by:whbaxter
  • 2
7 Comments
 
LVL 23

Accepted Solution

by:
debuggerau earned 500 total points
ID: 21765637
Have you tried joining the domain?
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 21765820
there is a whole load of ports here that you might need to open
http://support.microsoft.com/?id=179442
0
 

Author Comment

by:whbaxter
ID: 21768673
I joined the the server to the domain prior to moving it into the DMZ.

I will look at the ports and give that a try.

Thanks
0
 

Author Comment

by:whbaxter
ID: 21771622
I have removed the DMZ web server from the Domain and created a local user account on this server. this will serve my needs for now.

thanks for the responses.

this question can be closed.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Companies that have implemented Microsoft’s Active Directory need to ensure that the Active Directory is configured and operating properly. If there are issues found and not resolved, it eventually leads the components to fail or stop working and fi…
This article runs through the process of deploying a single EXE application selectively to a group of user.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

816 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now