| Author |
Message |
CoolerThanYou
Guest
|
 Posted:
Thu Jan 13, 2005 9:19 pm Post subject:
Please check my LAN diagram, I need advice for domain upgrad |
|
|
Hi everyone, Ok, here is a diagram of the LAN I'm working on at the moment,
I'm not sure how up-to-date the security of this is, but it seems to be
working ok.
Here is the link
http://www.chatham-mortgages.ca/test/lan.gif
Now, currently the Network is just running as a Workgroup, but I'm wanting
to switch over to a domain setup. So the "customer info" server has to be
able to communicate with the "online transactions" server through a couple
ports, and the "Application" server has to be available to workstations on
the network. I guess I'm just confused on which servers should have which
server roles, i.e. DNS, DHCP, Active Directory. Any suggestions would be
greatly appreciated. Thanks very much. |
|
| Back to top |
|
 |
Chriss3 [MVP]
Guest
|
| Posted:
Thu Jan 13, 2005 10:37 pm Post subject:
Re: Please check my LAN diagram, I need advice for domain up |
|
|
Hello,
The best is always to have a dedicated server for running as a Domain
Controller to host Active Directory and DNS, depending on how many users you
have you may need additional Domain Controllers, or for redundancy. There is
no problem to place the DHCP service on the Domain Controller as well.
--
Regards
Christoffer Andersson
Microsoft MVP - Directory Services
No email replies please - reply in the newsgroup
------------------------------------------------
http://www.chrisse.se - Active Directory Tips
"CoolerThanYou" <CoolerThanYou@discussions.microsoft.com> skrev i
meddelandet news:44F903EE-094C-4146-9D3F-7C88B4D002EC@microsoft.com...
| Quote: | Hi everyone, Ok, here is a diagram of the LAN I'm working on at the
moment,
I'm not sure how up-to-date the security of this is, but it seems to be
working ok.
Here is the link
http://www.chatham-mortgages.ca/test/lan.gif
Now, currently the Network is just running as a Workgroup, but I'm wanting
to switch over to a domain setup. So the "customer info" server has to be
able to communicate with the "online transactions" server through a couple
ports, and the "Application" server has to be available to workstations on
the network. I guess I'm just confused on which servers should have which
server roles, i.e. DNS, DHCP, Active Directory. Any suggestions would be
greatly appreciated. Thanks very much. |
|
|
| Back to top |
|
|
Phillip Renouf
Guest
|
| Posted:
Thu Jan 13, 2005 11:55 pm Post subject:
Re: Please check my LAN diagram, I need advice for domain up |
|
|
With regards to security, you should place a firewall between your external
and internal routers. Your online transaction server would plug into a DMZ
segment on the firewall and the firewall would also have connections on the
external side and one on the internal side.
That firewall could be something as simple as a Linksys/D-Link
router/firewall, a dedicated server running something like Microsoft ISA
Server or a dedicated server/appliance running a more robust firewall system
like a Netscreen from Jupiter.
Phil
"Chriss3 [MVP]" wrote:
| Quote: | Hello,
The best is always to have a dedicated server for running as a Domain
Controller to host Active Directory and DNS, depending on how many users you
have you may need additional Domain Controllers, or for redundancy. There is
no problem to place the DHCP service on the Domain Controller as well.
--
Regards
Christoffer Andersson
Microsoft MVP - Directory Services
No email replies please - reply in the newsgroup
------------------------------------------------
http://www.chrisse.se - Active Directory Tips
"CoolerThanYou" <CoolerThanYou@discussions.microsoft.com> skrev i
meddelandet news:44F903EE-094C-4146-9D3F-7C88B4D002EC@microsoft.com...
Hi everyone, Ok, here is a diagram of the LAN I'm working on at the
moment,
I'm not sure how up-to-date the security of this is, but it seems to be
working ok.
Here is the link
http://www.chatham-mortgages.ca/test/lan.gif
Now, currently the Network is just running as a Workgroup, but I'm wanting
to switch over to a domain setup. So the "customer info" server has to be
able to communicate with the "online transactions" server through a couple
ports, and the "Application" server has to be available to workstations on
the network. I guess I'm just confused on which servers should have which
server roles, i.e. DNS, DHCP, Active Directory. Any suggestions would be
greatly appreciated. Thanks very much.
|
|
|
| Back to top |
|
|
CoolerThanYou
Guest
|
| Posted:
Fri Jan 14, 2005 2:47 am Post subject:
Re: Please check my LAN diagram, I need advice for domain up |
|
|
Thanks guys.
"Phillip Renouf" wrote:
| Quote: | With regards to security, you should place a firewall between your external
and internal routers. Your online transaction server would plug into a DMZ
segment on the firewall and the firewall would also have connections on the
external side and one on the internal side.
That firewall could be something as simple as a Linksys/D-Link
router/firewall, a dedicated server running something like Microsoft ISA
Server or a dedicated server/appliance running a more robust firewall system
like a Netscreen from Jupiter.
Phil
"Chriss3 [MVP]" wrote:
Hello,
The best is always to have a dedicated server for running as a Domain
Controller to host Active Directory and DNS, depending on how many users you
have you may need additional Domain Controllers, or for redundancy. There is
no problem to place the DHCP service on the Domain Controller as well.
--
Regards
Christoffer Andersson
Microsoft MVP - Directory Services
No email replies please - reply in the newsgroup
------------------------------------------------
http://www.chrisse.se - Active Directory Tips
"CoolerThanYou" <CoolerThanYou@discussions.microsoft.com> skrev i
meddelandet news:44F903EE-094C-4146-9D3F-7C88B4D002EC@microsoft.com...
Hi everyone, Ok, here is a diagram of the LAN I'm working on at the
moment,
I'm not sure how up-to-date the security of this is, but it seems to be
working ok.
Here is the link
http://www.chatham-mortgages.ca/test/lan.gif
Now, currently the Network is just running as a Workgroup, but I'm wanting
to switch over to a domain setup. So the "customer info" server has to be
able to communicate with the "online transactions" server through a couple
ports, and the "Application" server has to be available to workstations on
the network. I guess I'm just confused on which servers should have which
server roles, i.e. DNS, DHCP, Active Directory. Any suggestions would be
greatly appreciated. Thanks very much.
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in