Forest trust.

[Guest]

Hi,

I need some info on this scenario:

I have a windows 2003 Active directory domain, this domain is behind a
router in city A,
Computers in this domain using IP rang: 10.0.0.X.

I have a windows 2003 Active directory domain with just one server (these 2
domains are in separate forest); this domain is in the city B. This server
connected to internet and has his own public IP address.62.X.X.X

Currently there is no connection between these 2 forests, now I would like
to know how can I connect this 2 forest together? Do I have to just create a
Forest wide trust between these 2 forests?
Or I need first to create some kind of connection (like VPN) between this 2
forests and then Forest trust?
Or could you direct me to some document on how to connect to spread network
in two different cities by using internet?

Thanks,

Shahin

 

[Phillip Windell]

Get the server 62.x.x.x off the Internet and use a VPN capable NAT Device
(Firewall), and put the Server behind it. You need the same thing at both
ends. Establish a Site-to-Site VPN (Router-to-Router VPN) between the two
NAT Devices. The machines behind those NAT Devices will communicate as if
they were simply in two different segments of the same LAN.


--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html

Microsoft Internet Security & Acceleration Server: Guidance
http://www.microsoft.com/isaserver/techinfo/Guidance/2004.asp
http://www.microsoft.com/isaserver/techinfo/Guidance/2000.asp

Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp

Deployment Guidelines for ISA Server 2004 Enterprise Edition
http://www.microsoft.com/technet/prodtechnol/isa/2004/deploy/dgisaserver.mspx