+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 22 of 22
Wireless Networks Thread, Network Setup in Technical; Originally Posted by FN-GM Im just wondering why you decided to go down the forest route please? thanks We decided ...
  1. #16
    djdohboy's Avatar
    Join Date
    Aug 2008
    Location
    Watford, Hertfordshire
    Posts
    55
    Thank Post
    0
    Thanked 7 Times in 6 Posts
    Rep Power
    14
    Quote Originally Posted by FN-GM View Post
    Im just wondering why you decided to go down the forest route please?

    thanks
    We decided to go the forest route as we are centeralising all of our 3rd party stuff like antivirus, ghosting, Policy centeral, to the root domain so that the load is removed from the child domains, also with the LEA's introduction of a fortinet box we needed a way to split the network down so that the students and staff got different levels of access, with the forest structure this is easier to do, also it makes VLANS a hell of a lot easier.

    Secondaly there is a security issue, with completly seperate domains the chance for "hacking" across the network is reduced.

    Thirdly it makes it easier to enforce different domain security policies

    Hope this helps

  2. #17

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,050
    Thank Post
    888
    Thanked 1,728 Times in 1,491 Posts
    Blog Entries
    12
    Rep Power
    453
    Quote Originally Posted by djdohboy View Post
    We decided to go the forest route as we are centeralising all of our 3rd party stuff like antivirus, ghosting, Policy centeral, to the root domain so that the load is removed from the child domains, also with the LEA's introduction of a fortinet box we needed a way to split the network down so that the students and staff got different levels of access, with the forest structure this is easier to do, also it makes VLANS a hell of a lot easier.

    Secondaly there is a security issue, with completly seperate domains the chance for "hacking" across the network is reduced.

    Thirdly it makes it easier to enforce different domain security policies

    Hope this helps
    Not being awkward here but....

    I have found that one domain works better than a forest. I work at 2 schools one is come out of a forest onto a single domain and the other is just doing the finishing touches of the planning. We have found there isnt any benefit at all.

  3. #18
    djdohboy's Avatar
    Join Date
    Aug 2008
    Location
    Watford, Hertfordshire
    Posts
    55
    Thank Post
    0
    Thanked 7 Times in 6 Posts
    Rep Power
    14
    I inherited the 2 domain structure, and was told by the head that, never the 2 domain will meet, as a kind of belt and braces approach to security. So that the kids will never be able to get to the sims server.

    The forest structure was implemented so that the domain segrigation still occured but there would be a root domain to be able to centeralise the management software, certificate services, IAS and the like.

    Got to be better than 2 totally seperate domains like we used to have, that made RADIUS authentication across domain shall we say a tad tricky

  4. #19

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,050
    Thank Post
    888
    Thanked 1,728 Times in 1,491 Posts
    Blog Entries
    12
    Rep Power
    453
    as told by the head that, never the 2 domain will meet
    Why would the head have this imput, its your job to judge that surely. The security can be setup on a single domain so the kids cant get into things like sims.

  5. #20
    djdohboy's Avatar
    Join Date
    Aug 2008
    Location
    Watford, Hertfordshire
    Posts
    55
    Thank Post
    0
    Thanked 7 Times in 6 Posts
    Rep Power
    14
    Quote Originally Posted by FN-GM View Post
    Why would the head have this imput, its your job to judge that surely. The security can be setup on a single domain so the kids cant get into things like sims.

    Well the previous network manager is a close personal friend of the HT and it was his recomendation that there should be 2 domains, and now thats the architecture we have, at least it makes things easier in some respects.

  6. #21

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,050
    Thank Post
    888
    Thanked 1,728 Times in 1,491 Posts
    Blog Entries
    12
    Rep Power
    453
    Quote Originally Posted by djdohboy View Post
    Well the previous network manager is a close personal friend of the HT and it was his recomendation that there should be 2 domains, and now thats the architecture we have, at least it makes things easier in some respects.
    I agree with you there.

    That sinks about the NM and your head though.

  7. #22
    djdohboy's Avatar
    Join Date
    Aug 2008
    Location
    Watford, Hertfordshire
    Posts
    55
    Thank Post
    0
    Thanked 7 Times in 6 Posts
    Rep Power
    14
    To be honest now we have the forest structure life is so much easier then it was with two totally seperate domains, it was just a nightmare administrating them both.

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Setup for dual boot XP and Vista on a network workstation
    By speckytecky in forum General Chat
    Replies: 4
    Last Post: 4th July 2008, 12:06 PM
  2. Document the network setup
    By pooley in forum How do you do....it?
    Replies: 4
    Last Post: 30th June 2008, 10:50 AM
  3. Multiple VLAN setup on network
    By Rattler in forum Wireless Networks
    Replies: 9
    Last Post: 30th November 2007, 11:08 AM
  4. Dell 150i network setup problem
    By Dos_Box in forum Hardware
    Replies: 7
    Last Post: 4th April 2007, 02:14 PM
  5. Replies: 5
    Last Post: 23rd February 2006, 09:23 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •