The outside NIC has only IP protocol connectivity..
The NIC's don't exchange traffic within the server it is in essence a form of firewall, one does want to be careful to have WINS turned off on the outside NIC or its a big whole.. Most of our servers do this, share files etc over the internal NIC and speak to the outside world via the outside NIC, the internal ip's sit behind the sonicwall.. With the security holes in IIS there is a good argument for not doing this (we don't use IIS) so we feel fairly safe... At 10:43 AM 6/6/2002 -0500, you wrote: > I would think that's the purpose of having a DMZ outside the LAN, to > keep the two seperated. If >someone can get in through the IP sitting on the DMZ, then they have >access to the LAN as well. >Game over.. > >Cavell McDermott >Domino Admin >APW Ltd. - Texas Campus >214-343-1400 - Main >214-355-2022 - Direct >214-341-9950 - Fax >http://www.apw.com > > > > > "John > Tolmachoff" > > <jtolmachoff@relianc To: > <[EMAIL PROTECTED]> > esoft.com> cc: > > Sent by: Subject: RE: > [SonicWALL]- Windows 2000 Based VPN though the Sonicwall > sonicwall-owner@peak > > e.com > > > > > > 06/06/2002 10:21 > AM > > Please respond > to > > sonicwall > > > > > > > > > >If you are running with one NIC on the LAN and one in the DMZ or >Internet bypassing the firewall to the LAN, isn't that a security risk? > >John Tolmachoff >IT Manager, Network Engineer >RelianceSoft, Inc. >Fullerton, CA 92835 >www.reliancesoft.com > >-----Original Message----- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On >Behalf Of [EMAIL PROTECTED] >Sent: Thursday, June 06, 2002 7:31 AM >To: [EMAIL PROTECTED] >Subject: RE: [SonicWALL]- Windows 2000 Based VPN though the Sonicwall > >I've been doing this for a couple years, since I still have stability >issues >with my Pro-VX sonicwall and VPN'ing into it... sigh... > >My second adapter on my 2K VPN server is outside the firewall, just >because >I'm still dealing with the questionable security, but I know several >people >who have the second adapter on the 2K machine in the DMZ, and have no >issues >whatsoever. > >If it's in the DMZ, only difference is you'll have to make sure the >rules >are set up for it. Otherwise, out of everyone I know who do their VPN >this >way, I've never heard of any compatibility issues or anything. > >John > > >-----Original Message----- >From: Kevin Bachelder [mailto:[EMAIL PROTECTED]] >Sent: Thursday, June 06, 2002 9:20 AM >To: [EMAIL PROTECTED] >Cc: [EMAIL PROTECTED] >Subject: [SonicWALL]- Windows 2000 Based VPN though the Sonicwall > >Hi all, > >We want to setup a VPN to allow a couple of our management staff to >connect >back to our office via their high speed internet access at home. We are > >using a SonicWall SOHO/50 and we don't have their VPN option. I am >hoping >to setup a VPN using one of our Windows 2000 Servers. Anyone know if >this >should work or will I run into any issues with the SonicWall? > >Thanks in advance, > >Kevin > >------------------ >Kevin Bachelder > >Microsoft Certified Systems Engineer - Windows NT 4.0 (MCSE) >Microsoft Certified Professional - Windows 2000 (MCP) >Citrix Certified Administrator (CCA) >CompTIA A+ Certified Computer Repair Technician (A+) > >--- >[This E-mail scanned for viruses by Declude/F-Prot AV] > >======================================================================== >==== >======================= >To unsubscribe, send email to [EMAIL PROTECTED] In the body of the >email >put the following: unsubscribe sonicwall your_name >The archive of this list is at >http://www.mail-archive.com/sonicwall%40peake.com/ > >--- >[This E-mail scanned for viruses by Declude/F-Prot AV] > >======================================================================== >=========================== >To unsubscribe, send email to [EMAIL PROTECTED] In the body of the >email put the following: unsubscribe sonicwall your_name >The archive of this list is at >http://www.mail-archive.com/sonicwall%40peake.com/ > > > >--- >[This E-mail scanned for viruses by Declude/F-Prot AV] > >=================================================================================================== >To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email >put the following: >unsubscribe sonicwall your_name >The archive of this list is at >http://www.mail-archive.com/sonicwall%40peake.com/ > > > > > > >--- >[This E-mail scanned for viruses by Declude/F-Prot AV] > >=================================================================================================== >To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email >put the following: unsubscribe sonicwall your_name >The archive of this list is at >http://www.mail-archive.com/sonicwall%40peake.com/ Frank Atkinson http://www.ohcapcon.com Ohio Capitol Connection/Rotunda Inc http://www.rotundainc.com Columbus, Ohio mailto:[EMAIL PROTECTED] 614-227-5820 fx:614-228-5897 --- [This E-mail scanned for viruses by Declude/F-Prot AV] =================================================================================================== To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email put the following: unsubscribe sonicwall your_name The archive of this list is at http://www.mail-archive.com/sonicwall%40peake.com/
