Wireless Networks Thread, Trust Relationship for web traffic in Technical; Hi,
We are currently looking into allowing our admin network to use the curriculum internet connection. We do not wish ...
11th November 2008, 01:15 PM #1
- Rep Power
Trust Relationship for web traffic
We are currently looking into allowing our admin network to use the curriculum internet connection. We do not wish for the two networks to communicate information with each other but we would like it so any web requests sent from our admin network are received and processed by our curriculum router.
Can this be done by using a trust relationship in Server 2003 or do we require a router to sit between the two networks to deal with this request. Both networks are on a different subnet.
Admin uses 192.168.3.0 255.255.255.0
Curriculum uses 10.15.86.0-10.15.87.253 255.255.254.0
Thanks in advance.
IDG Tech News
11th November 2008, 02:56 PM #2
Depends how its physically connected.
If its just "one big network" with 2 subnets on it all you need to do is add a 192.168.3.x ip address to the routers LAN interface. Add that ip address as the default gateway for your admin PCs, sort DNS as required.
11th November 2008, 03:52 PM #3
- Rep Power
The networks are completely separate right now and we would like to keep it that way with the exception of web traffic should be allowed to cross into the other network to use the gateway.
So machines on the 192.168.3.0 network need to access the router which is on the 10.15.87.0 network. Both networks are on a different domain.
Can this be done?
11th November 2008, 05:10 PM #4
Should not be a problem, you may need another router to act as the default gateway for your admin network and apply an access control list to allow only DNS, HTTP and HTTPS traffic through and only from the internets routers IP. Depending on the switches in place your admin core switch may have layer 3 managment and be able to do this for you without any extra hardware.
11th November 2008, 06:34 PM #5
So are they physically connected at all or not? Maybe a basic diagram would help.
Originally Posted by ahunter
Its easy enough to solve but you may have everything you need right now so why go spending money if you dont have to. And as said even if they are on the same physical kit they may be able to be logically seperated by use of VLANs.
Are VLANs an acceptable option?
We have 2 domains on 1 single physical and logical network. Our security is via properly configured servers, switches, firewalls etc. Is this an option?
Or do you want 2 completely disjointed networks? If the admin network is in easy reach of your curricumum router and your router has the capacity for 2 LAN port you could easliy allow traffic between them while keeping them seperate.
.Need more info. What hardware have you got? How does admin currently connect to the internet? Will your curriculum network be using admins servers, or visa versa? How much will they be using them? Not much and its not a problem, alot and it may not be viable for your current router to handle the internet for 2 domains and any cross traffic. How far are the networks apart physically, are they in seperate buildings? You will need fibre instead of copper if they are.
Your network infrastructure is something you want to get right first time, not be fannying around with tagging bits on here and there because it wasnt properly thought out from the start. Our network wasnt thought out properly, so we ended up with multiple single points of failure. Everytime someone acidently knocked the power off to 1 switch the whole network woulod go down - great fun
Last edited by j17sparky; 11th November 2008 at 06:55 PM.
By pete in forum General Chat
Last Post: 15th August 2010, 10:47 AM
By FN-GM in forum Windows
Last Post: 14th August 2008, 12:34 AM
By SimonC in forum Windows
Last Post: 2nd May 2007, 05:55 PM
By shane_southampton in forum Windows
Last Post: 13th September 2005, 11:12 AM
By Dos_Box in forum Wireless Networks
Last Post: 5th July 2005, 10:33 AM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)