Funny, this is the 3rd time in a month i've talked w/ someone about this! It's clear (to me at least)the "trusted" LAN is being redefined. Good article in network world a few weeks ago about a fortune 100 moving everything to vpn model ..... the extreme end of that continuum.
1. sure 2. I don't recall, but use netstat and check technet. I got all the info on this from there. 3. it may be dependent on your firewall. In general nat, pat or whatever layer 3 header mapping technology you want to do is not required and only adds overhead. I would not do this. Summary: I would only do what you ask if 1. your security policy mandates it, or 2. you dwell in the arcane. But then again, I like strait cushion billiards. ;) byron -----Original Message----- From: /dev/null [mailto:dev.null@;beginthread.com] Sent: Tuesday, November 05, 2002 9:19 AM To: NT 2000 Discussions Subject: Moving PDC behind firewall We're wanting to move our PDC behind a firewall/router that will insulate it from the users machines. I have several questions about this, but any experience or help would be great. 1. Can the PDC run on a completely separate network? For example, can we put the client PCs in a 10.* network and the PDC in a 192.168.* network? 2. What protocols/ports do the firewall need to allow through in order for login and file sharing to work? 3. Does it need to NAT any of these protocols, or should it just route them? Thanks! ------ You are subscribed as [EMAIL PROTECTED] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to %%email.unsub%% ------ You are subscribed as [email protected] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to [EMAIL PROTECTED]
