Untrusted Windows Domains


When network firewalls (cisco etc) have specific communication ports opened is
the communication through these ports by default, possible, between untrusted Windows 2008 Domains?

If not, should there be more done (what?) except for additional rules in Windows firewalls to enable it?
LVL 13
George K.Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Not clear what you are asking here.  The firewall connections are separate from the trust relationship if any between and among windows domains.

Could you restate the details to clarify what you mean?
George K.Author Commented:
Hi, thanks for your interest.
Application on Server S1 needs to communicate with application on Server S2 through a specific port.
Servers S1, S2 reside on untrusted Domains.

Network Firewalls (on Cisco) is opened for the specific Port.

Does this mean Communication is automatically allowed between the Windows Servers?
Opening ports/connections on the firewall cisco in your mentioned case, means the network path is available.

access is still controlled by windows firewall if opened on the ports in question the application Could be accessible but operating will remain depending on what internal control if any is alvailable..
Internet [cisco firewall (windows server firewall) ] siteA
Internet [cisco firewall (windows server firewall) ] siteb
opening port on each cisco firewall gets the connection attempt up to the windows firewall on the server. If you have the advanced windows firewall configured to only allow domain network access, the remote connection might not be allowed.

Are you setting up a VPN connection specifically for server S1 to S2 communication?
opening port implies anyone from outside each network could attempt/access those .

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Seth SimmonsSr. Systems AdministratorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.