Windows Server 2012 R2 connecting 1 domain to another through 2 routers

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

drpetteys

Thread Starter
Joined
Jun 24, 2015
Messages
3
I have a Windows Server 2012 R2 domain in the dmz. I have a Windows Server 2012 R2 domain in the network. I can access the one in the network to the dmz without a problem, but I cannot access the one in the dmz to the network. The ip addresses in the network are different than the ip address in the dmz. I fowarded the ports but the dmz box still gets blocked. I tried to do it by VPN after setting the router to accept VPN. The connection still gets blocked. I set all the firewall settings.

I'm not sure where to go from here, any help would be appreciated.

Thank you
 

zx10guy

Trusted Advisor
Spam Fighter
Joined
Mar 30, 2008
Messages
6,433
What router(s) are you using? If you're using a SOHO router, the purpose of the DMZ is to allow any device sitting in the DMZ to access the Internet but not access the trusted network. The trusted network will also have access to the devices on the DMZ.

So the question is why do you have this particular server in a DMZ?
 

drpetteys

Thread Starter
Joined
Jun 24, 2015
Messages
3
I'm using a Netopia Model 3346N DSL Ethernet Switch on the front end and Airlink AR686W router just before the network.
I am working a project where we will be web hosting a customers documents. They will be able to log in from anywhere and access the records. The company we bought the software to do this had said there needs to be a domain in the dmz with the web server attached. Then there needs to be a domain in the network with an application server joined and a one way trust between the domains. The client's request will come in to the web server in the dmz and redirect to the application server in the network where the image their viewing will redirect back to the web server in the dmz. This is all done to protect our application server where the sql database resides.
 

zx10guy

Trusted Advisor
Spam Fighter
Joined
Mar 30, 2008
Messages
6,433
You'll probably need a different firewall/router. The SOHO devices and even many SMB ones have limited flexibility in creating access control rules. For instance, a firewall like a Cisco ASA5505 would allow you to create a rule to allow specific traffic flow from an untrusted zone to a trusted or higher trust zone. If you had a firewall similar to the ASA, you could get what you want done on that hardware no problem.
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Staff online

Members online

Top