[Samba] Domain member in DMZ
Rowland Penny
rpenny at samba.org
Mon Mar 11 09:50:39 UTC 2024
On Mon, 11 Mar 2024 10:15:13 +0100
Marko Cupać via samba <samba at lists.samba.org> wrote:
> Hi,
>
> Is it possible to have domain member in DMZ public IPv4 address space
> which communicates with DC on LAN private IPv4 address space, assuming
> there's no direct route from public to private address space and
> communication is enabled by nat and port forwarding?
>
> Thank you in advance,
>
Is it possible, probably.
Is it a good idea, probably not.
In my opinion, if you are going to stick a domain member in a DMZ, you
might as well put all your domain in the DMZ.
I suggest that you use a VPN.
Rowland
More information about the samba
mailing list