I think the end result will be: "swiss cheese mode for the firewall" google for the following docs: Active Directory in Networks Segmented by Firewalls Active Directory Replication over Firewalls Met vriendelijke groeten / Kind regards, Ing. Jorge de Almeida Pinto Senior Infrastructure Consultant MVP Windows Server - Directory Services LogicaCMG Nederland B.V. (BU RTINC Eindhoven) ( Tel : +31-(0)40-29.57.777 ( Mobile : +31-(0)6-26.26.62.80 * E-mail : <see sender address>
________________________________ From: [EMAIL PROTECTED] on behalf of [EMAIL PROTECTED] Sent: Mon 2006-04-24 12:28 To: [email protected] Subject: [ActiveDir] ACtive directory Trusts and firewall configuration Dear list! I'm in the need of setting up trust between two existing Active directory domains and i have a few questions regarding this. the goal is that people can logon form either domains with their user credentials and that people can use resources in both domains, we also need the exchange addressbooks in both domain to replicate to each other but thats maybe a different list. Domain A has 8 domain controllers where as the operation master roles are spread on different servers, domain b has only 1 domain controller. We have configured a VPN between the networks so the communication is up and running. My questions are: What ports do i need to open in the firewall to achive this? And do i have to open trust from domain B to all of my DC's in domain A or is it enough to open towards any DC or a specific DC? (wich server roles does it need) Many thanks in advance. Med vennlig hilsen / Best regards Jan Wilhelmsen IT-Technician Bilia Personbil as Økernveien 115 0510, Oslo Norway Tel: +47 22882546 Mob:+47 95928392 Fax: +47 22970387 Mail: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> MSN: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> Gmail: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you.
<<winmail.dat>>
