Unusual Network Topology - advice please!

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Nick (nrsprice_at_hotmail.com)
Date: 02/09/05 

Date: Wed, 9 Feb 2005 12:00:13 -0000

Hi All,

I have an SBS network where, for operational reasons, we need to split it in
to two distinct and separate segments, an admin network and a 'technical
production' network and I'm having a mental block on how to get it working
as required...

Think of the admin network as any normal SBS network (single SBS server and
XP clients) with internet access, exchange, file & print etc. The 'technical
production' network is a 'ring fenced' area with, for instance, no internet
access but its own file server and XP workstations.

The difficulty is that they must be linked in some limited way to allow raw
files to be handed over from the admin network to the 'technical production'
network, where they're then worked on. When finished, they're handed back
from the 'technical production' network to the admin network.

Would it be possible to set up the existing 'technical production' network
Windows 2000 server as bridge between and shared storage area for the two
segments so that it can access and be available to both but not act as a
gateway from the 'technical production' network to the admin network? Using
routing and remote access?

To simplify 'technical production' network workstation TCP/IP setup, could
the 'technical production' network Windows 2000 server be a DHCP and WINS
server for the 'technical production' network without interfering with the
SBS admin DHCP & WINS?

Would it be possible to block all traffic across the 'bridge' except
specific service ports?

Or would it be better to put a cheap & cheerful router in between the two
segments?

Either way, presumably, I'd run the two segments as different & unique NT
domains.

Is this making any sense?! Feel free to point out the obvious solution(s)
that I'm missing...

Any advise or suggestions much appreciated! Thanks in advance,

NickP

Relevant Pages

  • RE: Unusual Network Topology - advice please!
    ... All domain trust models will be unavailable when using sbs, ... > to two distinct and separate segments, an admin network and a 'technical ... > from the 'technical production' network to the admin network. ...
    (microsoft.public.windows.server.sbs)
  • Re: Unusual Network Topology - advice please!
    ... then set up the Win2000 server as an FTP server. ... > I have an SBS network where, for operational reasons, we need to split it ... > to two distinct and separate segments, an admin network and a 'technical ... > from the 'technical production' network to the admin network. ...
    (microsoft.public.windows.server.sbs)
  • Re: OWA multiple authentication prompts help sought (UK School)
    ... I added the site address to Trusted Sites zone and ensured the trusted sites ... This maybe because of the link between your isa box and owa site, ... The admin network is new and I have admin access to both ... > network at some point, the multiple authentication request is new. ...
    (microsoft.public.exchange2000.general)
  • Re: OWA multiple authentication prompts help sought (UK School)
    ... I added the site address to Trusted Sites zone and ensured the trusted sites ... This maybe because of the link between your isa box and owa site, ... The admin network is new and I have admin access to both ... > network at some point, the multiple authentication request is new. ...
    (microsoft.public.exchange.clients)
  • Re: OWA multiple authentication prompts help sought (UK School)
    ... I added the site address to Trusted Sites zone and ensured the trusted sites ... This maybe because of the link between your isa box and owa site, ... The admin network is new and I have admin access to both ... > network at some point, the multiple authentication request is new. ...
    (microsoft.public.exchange.misc)