Untrusted Windows Domains

Hi,

When network firewalls (cisco etc) have specific communication ports opened is
the communication through these ports by default, possible, between untrusted Windows 2008 Domains?

If not, should there be more done (what?) except for additional rules in Windows firewalls to enable it?



Not clear what you are asking here. The firewall connections are separate from the trust relationship if any between and among windows domains.

Could you restate the details to clarify what you mean?



Not clear what you are asking here. The firewall connections are separate from the trust relationship if any between and among windows domains.

Could you restate the details to clarify what you mean?



Hi, thanks for your interest.
Example:Application on Server S1 needs to communicate with application on Server S2 through a specific port.
Servers S1, S2 reside on untrusted Domains.

Network Firewalls (on Cisco) is opened for the specific Port.

Does this mean Communication is automatically allowed between the Windows Servers?



Opening ports/connections on the firewall cisco in your mentioned case, means the network path is available.

access is still controlled by windows firewall if opened on the ports in question the application Could be accessible but operating will remain depending on what internal control if any is alvailable..
Internet [cisco firewall (windows server firewall) ] siteA
Internet [cisco firewall (windows server firewall) ] siteb
opening port on each cisco firewall gets the connection attempt up to the windows firewall on the server. If you have the advanced windows firewall configured to only allow domain network access, the remote connection might not be allowed.

Are you setting up a VPN connection specifically for server S1 to S2 communication?
opening port implies anyone from outside each network could attempt/access those .



No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I have recommended this question be closed as follows:Accept: arnold (http:#40672024)

If you feel this question should be closed differently, post an objection and a moderator will read all objections and then close it as they feel fit. If no one objects, this question will be closed automatically the way described above.

seth2740
Experts-Exchange Cleanup Volunteer



This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

Share this

Related Posts

There was an error in this gadget