Just to clarify, are you saying that within a nominal site, e.g. a building, you would have firewalls separating separate segments?
-gil -----Original Message----- From: Thommes, Michael M. [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 10, 2002 8:00 AM To: '[EMAIL PROTECTED]' Subject: [ActiveDir] creating sites to avoid random AD replication partners? Hi, As is true with most companies today, we are deploying lots of firewall rules even down to the division level with their own LANs. We've seen with our root domain/child domain domain controllers they pick random replication partners. To avoid putting in a whole lot of n x n conduits in the firewalls for the domain controllers, we're thinking of creating a site for each division that has a child domain. This would allow us to pick a bridgehead server in each site and thus minimize the combinations of replication partners. Has anyone created this type of topology and what would the performance issues be? We are not a multinational company and have approximately 4000 users. Any comments are appreciated. Thanks. Michael M. Thommes <[EMAIL PROTECTED]> Systems Administrator Argonne National Laboratory List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
