J
Joel Rising
Folks,
Got an AD domain on my private network, and another one
(different forest) in my DMZ. Employees in the private
one, customers in the DMZ. Got some web server resources
in the DMZ that I want not to be public, only accessible
by customers and employees.
So DMZ trusts private. Easy that part. But there is a
firewall between, and I would very much prefer that the
only traffic going between the DMZ and private LAN be
between one private DC and one DMZ DC.
Does anyone know if you can instruct member servers in a
domain to always relay auth requests for a trusted domain
through a certain DC?
Thanks in advance.
Joel
Got an AD domain on my private network, and another one
(different forest) in my DMZ. Employees in the private
one, customers in the DMZ. Got some web server resources
in the DMZ that I want not to be public, only accessible
by customers and employees.
So DMZ trusts private. Easy that part. But there is a
firewall between, and I would very much prefer that the
only traffic going between the DMZ and private LAN be
between one private DC and one DMZ DC.
Does anyone know if you can instruct member servers in a
domain to always relay auth requests for a trusted domain
through a certain DC?
Thanks in advance.
Joel