W2K in DMZ

  • Thread starter Thread starter manoa
  • Start date Start date
M

manoa

Our network consist of one domain, company.com, running
W2K SP4 with two domain controller. I have just setup a
DMZ on the firewall upon which I will put three of my
webservers onto. The internal network IPs are 10.x.x.x
and the DMZ IP subnet is 192.x.x.x. The webservers are
configured to be standalone servers but part of the
company.com domain. How do I ensure that the webservers
on the DMZ can still contact the controller for wintime
and other internal network resources. These servers are
web applications configured to work with out SQL servers
internally.
 
manoa said:
and the DMZ IP subnet is 192.x.x.x. The webservers are
configured to be standalone servers but part of the
company.com domain.
Click to expand...

If they are stand-alone, then they aren't part of the Domain. That is what
stand-alone means. Don't confuse your Registered Publicly Advertized Domain
Name with your internal Active Directory Domain Name. They are two different
things,..they should *not* be the same name,..and they have no direct
relationship to each other.
How do I ensure that the webservers
on the DMZ can still contact the controller for wintime
and other internal network resources.
Click to expand...

They don't. They are in the DMZ. The DMZ is by design and intention to be
isolated, separate, and distinct from the internal network. You are asking
for something that you don't need, shouldn't want, and shouldn't do.

Have them sync time with an established Internet Time Source if keeping a
perfectly acurate clock is important.
 
Our network consist of one domain, company.com, running
W2K SP4 with two domain controller. I have just setup a
DMZ on the firewall upon which I will put three of my
webservers onto. The internal network IPs are 10.x.x.x
and the DMZ IP subnet is 192.x.x.x. The webservers are
configured to be standalone servers but part of the
company.com domain.
Click to expand...

Stand alone means not in a domain. :)
How do I ensure that the webservers
on the DMZ can still contact the controller for wintime
and other internal network resources. These servers are
web applications configured to work with out SQL servers
internally.
Click to expand...

You configure your firewall for Windows networking or whatever other
services are needed between the LAN and DMZ.

Jeff
 
Back
Top