| Title: | SEAL |
| Moderator: | GALVIA::SMITH |
| Created: | Mon Mar 21 1994 |
| Last Modified: | Fri Jun 06 1997 |
| Last Successful Update: | Fri Jun 06 1997 |
| Number of topics: | 1989 |
| Total number of notes: | 8209 |
Let me run this by you. A customer in Sydney(Nt domain1) has software developers in Israel(Nt domain2). The devs want to be able to access the customer's Sydney network. Currently 1. they has a frame relay line from Sydney to Israel. 2. The firewall is opened to allow the Israel team to access domain2 via ftp only. Want: 1. keep frame relay line. 2.Probably replace the old firewall with ours. 3. Let the Israel team access the Sydney network. Want to open a secure hole - or as secure as can be. . So they need to set up trust relationships using NT domain1 and NT domain2. Question Would the firewall and tunnel servers on each net allow the NT servers to create a trust relationship? I think so - but what about Netbios naming etc. Any ideas? All we need to know at the moment is if this is possible. I will need to prove it later. Regards Andrew Stylianou
| T.R | Title | User | Personal Name | Date | Lines |
|---|---|---|---|---|---|
| 1875.1 | The answer is yes | PMESD::BEABES | Tue Mar 18 1997 11:00 | 4 | |
The answer is a lot simpler that the application. I would suggest that you NOT load the Tunnel on the Firewall box. It can be done but the routing nightmare that is created is extensive. You will need to install a Group Tunnel to Group Tunnel on both protected nets. When they are running then you be passing any or all IP packets through the Tunnel link creating a virtual network. | |||||