Keeping Communication open between DMZ and Network

  • Thread starter Thread starter Bob
  • Start date Start date
B

Bob

I am looking for a solution to keep 2000 Servers in a DMZ
open to 2000 servers on the network without having to
place in credentials every time there is a lul period of
activity which then prompts or causes errors to
applications when being called upon servers in the DMZ?
Kerberos can only be run with Active Directory correct?
We are still running a NT4 domain.
 
You might want to consider ipsec. You can create a policy but will need to use
preshared key or certificate for machine authentication with certificate being the
preferred method and you could create your own by creating a stand alone Certificate
Authority on one of your internal W2K machines. You of course can not use Group
Policy to manage the policy but you can export/import to other W2K machines. ---
Steve

http://www.microsoft.com/windows2000/techinfo/planning/security/ipsecsteps.asp
 
Back
Top