WKS outside PIX

Toggle sidebar Toggle sidebar
G

Guest

Guest
Archived from groups: microsoft.public.win2000.dns (More info?)

Hi Guys

We have some stations outside our PIX Cisco 550 with a NAT configuration, we
got some trouble to join these station on our AD that is inside the same PIX.

Before all, we need this kind of topology couse these wks are very faw from
our dc and then we cannot use the same network.

We need to join all these station on our domain.

P.S.

We wouldn't use the IPSEC and VPN solution.

Any Idea?

Thanks in Advance.


Stefano e Maurizio (Italy)
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.dns (More info?)

NETCRASHLOG wrote:
> Hi Guys
>
> We have some stations outside our PIX Cisco 550 with a NAT
> configuration, we got some trouble to join these station on our AD
> that is inside the same PIX.
>
> Before all, we need this kind of topology couse these wks are very
> faw from our dc and then we cannot use the same network.
>
> We need to join all these station on our domain.
>
> P.S.
>
> We wouldn't use the IPSEC and VPN solution.
>
> Any Idea?
>
> Thanks in Advance.
>
>
> Stefano e Maurizio (Italy)

Do you want them to connect from the Internet? Bad idea if so. Set up a VPN
site link between the two offices. If I've misunderstood, please correct me.

Salve!
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.dns (More info?)

The situation is this:
We have a private and very important internal network inside an another
private and very large intranet.
Between this network there is a pix Firewall.
Both network have private ip address
Inside PIX 192.168.x.x
Outside PIX 10.x.x.x
The our necessity is that from network 10.0.0.0 place outside PIX, many WKS
(2000 professional) must to join to DC that are inside to PIX.
No access is request from internet but only from intranet.
The problem is DNS on DC that have SRV record with association 192.168.0.0
that are unreachable from intranet why pix done a Nat.
We would like avoid to use Ipsec and VPN from intranet station.

Thanks

"Lanwench [MVP - Exchange]" wrote:

> NETCRASHLOG wrote:
> > Hi Guys
> >
> > We have some stations outside our PIX Cisco 550 with a NAT
> > configuration, we got some trouble to join these station on our AD
> > that is inside the same PIX.
> >
> > Before all, we need this kind of topology couse these wks are very
> > faw from our dc and then we cannot use the same network.
> >
> > We need to join all these station on our domain.
> >
> > P.S.
> >
> > We wouldn't use the IPSEC and VPN solution.
> >
> > Any Idea?
> >
> > Thanks in Advance.
> >
> >
> > Stefano e Maurizio (Italy)
>
> Do you want them to connect from the Internet? Bad idea if so. Set up a VPN
> site link between the two offices. If I've misunderstood, please correct me.
>
> Salve!
>
>
>
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.dns (More info?)

In news:17C70EAE-E420-4B7C-8A0A-6439958B9206@microsoft.com,
Maurizio <Maurizio@discussions.microsoft.com> commented
Then Kevin replied below:
> The situation is this:
> We have a private and very important internal network
> inside an another private and very large intranet.
> Between this network there is a pix Firewall.
> Both network have private ip address
> Inside PIX 192.168.x.x
> Outside PIX 10.x.x.x
> The our necessity is that from network 10.0.0.0 place
> outside PIX, many WKS (2000 professional) must to join to
> DC that are inside to PIX.
> No access is request from internet but only from intranet.
> The problem is DNS on DC that have SRV record with
> association 192.168.0.0 that are unreachable from
> intranet why pix done a Nat.
> We would like avoid to use Ipsec and VPN from intranet
> station.

The problem is, unless you VPN through the firewall, you'll have to make the
firewall like swiss cheese. If you make VPN connections through the Pix, all
you need is the VPN port. So do you want a firewall made of swiss cheese?
310111 - HOW TO Configure Packet Filter Support for PPTP VPN Clients in
Windows 2000:
http://support.microsoft.com/default.aspx?scid=kb;en-us;310111&sd=RMVP
832017 - Port Requirements for the Microsoft Windows Server System:
http://support.microsoft.com/default.aspx?scid=kb;en-us;832017&sd=RMVP
--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
 
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom