I think this really depends on the security policies of your environment.
Current project has two main classifications of DMZ: one which allows connections from outside the environment (e.g. incoming requests), and one that allows connections to external devices (i.e. outgoing requests). I think that's a pretty standard type of classification in many environments. The former generally doesn't allow connections back into the environment, so no domain join. The latter does, so is (usually) domain joined (obvious exceptions are many appliances, *nix/Solaris/etc and similar which are not Windows machines) Obviously SCVMM has some limitations here. But for the external DMZ, we're doing a lot of things via separate processes to internal anyway (patching, package distribution etc.), so VM management is just another one. Cheers Ken From: Christopher Bodnar [mailto:[email protected]] Sent: Tuesday, 3 July 2012 10:57 PM To: NT System Admin Issues Subject: VMM/Hyper-V question Curious if anyone out there is keeping their Hyper-V hosts in a perimeter network. Or are most people domain joining them. My initial thought was to have them all in a perimeter network with no domain, but with VMM inside the domain. Finding some limitations to this configuration. Specifically in regards to the libraries. you can't transfer VM's from a host in a perimeter network to a library on the VMM server in the domain. Can't see thumbnails either, but that seems minor in comparison. Thanks Christopher Bodnar Enterprise Achitect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 <mailto:> [email protected] The Guardian Life Insurance Company of America <http://www.guardianlife.com/> www.guardianlife.com ----------------------------------------- This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
<<image001.jpg>>
