ACS2012
asked on
restrict the communication between the TMG servers and the domain controllers
Dear All,
I’m planning to install TMG 2010 servers standalone array in our DMZ and we will join it to our domain, in the internal network we have 6 windows 2008 R2 domain controllers, I’m looking for a way to restrict the communication between the TMG servers and the domain controllers so TMG servers will only communicate two selected domain controllers, not all DC’s, that’s required by the security and network departments.
Can I do that?
Please help.
Thanks
I’m planning to install TMG 2010 servers standalone array in our DMZ and we will join it to our domain, in the internal network we have 6 windows 2008 R2 domain controllers, I’m looking for a way to restrict the communication between the TMG servers and the domain controllers so TMG servers will only communicate two selected domain controllers, not all DC’s, that’s required by the security and network departments.
Can I do that?
Please help.
Thanks
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
that's from TMG, how i can make it also from windows? i need to restrict everything, windows and TMG.
When you installs TMG then Windows Firewall control was taken by TMG. Whatever you control from TMG is also work for Windows as well.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thanks for your reply.
could you please provide me more information like how to do that from the system config? and do i have to make it in TMG or DC's?
regarding the "you cannot block the authentication of TMG if TMG is requesting the domain for authentication ", what if i colse this by the network so the TMG can communicate two of the domain controllers only?