There are a couple of ways to do this: 1) DMZ DHCP server. Have a dhcp server on the dmz that only systems on the DMZ lan can make requests to. This is probably the most secure way to do it. You could probably utilize one of the already existing servers out there to accomplish this. 2) have the router do "ip-helper". This will allow the router to appear as a DHCP server while it is just forwarding requests. (similar to port-forwarding, but probably less secure) 3) have a management network behind your DMZ. Some people have a management network that is only accessible from their DMZ specifically set up for things like backups, dhcp, etc. 4) Look into configuring the pxe boot process to have a static ip and next-server without going to the dhcp server. (no idea if this is doable)
-----Original Message----- From: Jason White [mailto:[EMAIL PROTECTED] Sent: Monday, August 18, 2003 9:01 PM To: [EMAIL PROTECTED] Subject: [Sisuite-users] Installing in a DMZ environment Hello everyone -- I'm new to the list, so if this question has been asked before, I apologize (didn't find anything in the achives). I'm trying to determine the best way to use SystemImager in an environment where the clients are in the DMZ and the image server is in a secure zone. Installing clients in our secure zone is easy -- just boot them off the network, and install via rsync or ssh. I can't boot off the network from the DMZ, because the client won't find his way back to the BOOTP/DHCP server in the secure zone. I can't put a autoinstall floppy or CD in the DMZ client, and expect him to find the image server, because the DMZ client can't use rsync or ssh to talk back to the secure zone. Also, these will be new machines, so they won't have any OS loaded to boot. The only access to the DMZ client(s) is one-way ssh from the secure zone. +--------+ NO dhcp/bootp/ssh/rsync +----------+ | | -------------------------> | | | DMZ | | Secure | | client | ssh(22) only | Zone | | | <------------------------- | | +--------+ +----------+ Any way of using SystemImager to "push" an image to a client? Am I missing something, or is there a better way? Thanks, Jason ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01 _______________________________________________ Sisuite-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/sisuite-users ------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here:http://www.vmware.com/wl/offer/358/0 _______________________________________________ Sisuite-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/sisuite-users
