Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 494
  • Last Modified:

two seperate domains - single site Network Topology?

Hi, this is my scenario

I have a client where the parent company has split into two smaller companies. The two companies will be at the same physical location for a year, then company B will split off and want to move its servers to the new location. So I am trying to make this a seamless transition for both companies.

Company B will have it own domain and exchange server. Windows Server 2008 R2 and Exchange 2010. There will be trust setup between A+B for sharing files etc. Company A is also running Windows Server 2008 R2 and Exchange 2010.

So my question is this? I understand the Server side of the equation but I am not so sure of the network topology to get them both talking without network collisions etc. I have a single watchguard firewall with two interfaces for the first company and I am hoping to use the second two interfaces(wan/lan) for the second company. Will I need to setup VLANS? I am also guessing I would need to setup a new IP scheme and change the subnet for company B.

Sorry I am little confused on how to roll this out, any help would be greatly appreciated.

Leroy
0
Wolfpack7117
Asked:
Wolfpack7117
  • 4
  • 2
1 Solution
 
Wolfpack7117Author Commented:
Sorry I put this in the wrong zone and I am not sure how to move it. It should be in the Windows Networking. This is my first time posting as a trial member so I kind goofed it up.
0
 
p_nutsCommented:
no worries you can request a move through as attention.

to answer your question :

in order for the trust and file sharing to work the servers and clients need to see and connect to eachother. vlans would seperate them ... you could separate but then you'd have to enable routing and firewall rules between the two subnets.. since the 2 companies are kind of siblings I wouldn't split the network. I would just have 1 of the 2 have the dhcp role and secure the servers through windows security. you can have 2 forests with each a domain all in one subnet and build trusts between the domains and forests.

0
 
Wolfpack7117Author Commented:
Ok, so just so I make sure I understand your response.

I should keep the same IP scheme for the whole network.  Create a second forest with the new domain.
and then add users from company B to new domain.

Do I still need to route traffic to the second set of network interfaces from the firewall to allow mail traffic etc to work.

Please let me know if I am understanding you correctly.

Thanks for your help
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
Wolfpack7117Author Commented:
FYI, this is a pain that I can't edit my own comments. At least I can't figure out where to do it.
0
 
p_nutsCommented:
yes and no. you will not have to route internal traffic. but you would have to setup routing for incoming and outgoing mail for domain b
0
 
Wolfpack7117Author Commented:
I was hoping for more input from others but this will suffice.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now