thr3ads.net - samba - [Samba] Domain member in DMZ [Mar 2024]

If this information is useful, please help other people find it:
Share via:

Marko Cupać

2024-Mar-11 09:15 UTC

[Samba] Domain member in DMZ

Hi,

Is it possible to have domain member in DMZ public IPv4 address space
which communicates with DC on LAN private IPv4 address space, assuming
there's no direct route from public to private address space and
communication is enabled by nat and port forwarding?

Thank you in advance,

-- 
Before enlightenment - chop wood, draw water.
After  enlightenment - chop wood, draw water.

Marko Cupa?
https://www.mimar.rs/

Rowland Penny

2024-Mar-11 09:50 UTC

head link

[Samba] Domain member in DMZ

On Mon, 11 Mar 2024 10:15:13 +0100
Marko Cupa? via samba <samba at lists.samba.org> wrote:
> Hi,
> 
> Is it possible to have domain member in DMZ public IPv4 address space
> which communicates with DC on LAN private IPv4 address space, assuming
> there's no direct route from public to private address space and
> communication is enabled by nat and port forwarding?
> 
> Thank you in advance,
> 
Is it possible, probably.

Is it a good idea, probably not.

In my opinion, if you are going to stick a domain member in a DMZ, you
might as well put all your domain in the DMZ.

I suggest that you use a VPN.

Rowland

samba - Mar 2024 - Domain member in DMZ

[Samba] Domain member in DMZ

[Samba] Domain member in DMZ