One-way trust between Internal network and DMZ
Date: Wed, 17 Mar 2004 10:47:02 -0600
WE are going to build a separate W2K domain in DMZ and have a one way trust
between internal network and DMZ. Are there and security concerns ? Can you
direct me to any documents that discusses this kind on scenarios. ?
Thanks.
Amila
Relevant Pages
- Re: Exchange server in DMZ, not FE server. Is this ever ok?
... It will turn out that it doesn't add value in terms of security ... If I hear you as saying having a firewall present is without value, ... NICs - one for the internal network, and the other for the DMZ. ...
(microsoft.public.security) - Re: Win2k and one-way trusts
... can further harden the domain machines in the dmz by adding the administrators ... set to zero in Local Security Policy effective settings. ... problems with domain machines, particularly if you have W9X or NT4.0 machines. ... > does not trust the dmz). ...
(microsoft.public.win2000.security) - Re: Access denied on network share in an other domain
... Leaving aside the idea of the Trust for a moment, the idea is that hosts in the DMZ should have no or limited access to the LAN. ... It sounds as though what you would do is to copy out your data from the internal network to the DMZ. ... The copy needs to use credentials that the DMZ recognises, e.g a local account on the DMZ server, or else you can use a one way trust where DMZ servers trust internal server. ...
(microsoft.public.windows.server.security) - Win3k Forest Trusts
... We are trying to setup a trust between our DMZ and Internal network. ... DMZ and Internal network are their own Forest both running Win3k with SP1 ...
(microsoft.public.windows.server.general) - Win3k Forest Trusts
... We are trying to setup a trust between our DMZ and Internal network. ... DMZ and Internal network are their own Forest both running Win3k with SP1 ...
(microsoft.public.windows.server.setup) |
|
