Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 259
  • Last Modified:

Domain on HOST different from multiple GUEST domains (for mgmt purposes of host and VMM access to guests)

Scenario:  

- Domain1 is an existing domain with managed computers - physical and virtual - using SCE2010 etc.
- Domain2 is a new "company" to be completely isolated, separate, etc. - with its own Exchange server (and AD of course) .. and so on - 100% on multiple guest vm's running on a single host -- call it NEWHOST

Question is - for management purposes only .. does it make sense (and IS IT the best way) to have NEWHOST as a member of Domain1 -- even though the GUESTS on NEWHOST will create a new distinct domain (Domain2) and will host new Exchange server and so on.

Any issues .. ??
0
paulflint
Asked:
paulflint
  • 3
  • 2
1 Solution
 
Greg HejlCommented:
i would add NEWHOST to domain1

i have a similar set up for a subdivision we run,

the first host i did not add to our domain1 - when we needed to expand with a second host i added that to the company domain1 and it worked so much better I added the original host to the company domain1.

everybodies happy!
0
 
paulflintAuthor Commented:
Greg -- sounds good .. but it's important to realize (for OUR scenario anyhow) .. that there can be no chance or issues with cross-polination etc. - right ?  The two domains have to be distinct, separate, isolated - etc. - right ?  For business AND compliance purposes -- but this would still be the case - you think .. ?
0
 
paulflintAuthor Commented:
Greg - and DO you have a completely new and separate DOMAIN running within the guest vm's on your new hosts .. like I want to do?
0
 
Greg HejlCommented:
my two domains are completely separate.

i have the vm's attached to host adapter in separate vlan subnet.

i could separate them further by denying traffic from domain1 to domain2 only allowing access through hyper-v but it works better for  my operators to rdp to the vm's

for compliance purposes: we use McAfee scanners on our IP space - if one group is out of compliance all are out of compliance.
0
 
paulflintAuthor Commented:
Solved - and followed Greg's advice; steps I had been planning to do in any event.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now