The main issue you may want to bring up is, "Does management really want NT
passwords and files to be passed cleartext across a public domain like the
internet?" I would suggest using SecuRemote for VPN access to the company
resources from the internet. It will be encrypted at a minimum. Also you
will need to add either a WINS server or a host list on the remote stations.
Just a thought. If the answer to the VPN solution is no, then either get
ready for a lot of crap to be blamed on you, i.e. hacks and such, and a lot
of down time as hackers DDOS you. Time to look elsewhere for employment.
-----Original Message-----
From: Jörg Weber [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 15, 2001 7:42 AM
To: '[EMAIL PROTECTED]'
Subject: [FW1] SMB and NAT: Design Question
Ladies, Gentlemen,
first off I'd like to mention that the following idea is not my idea. I'm
actually quite against it. But well...
Management wants me to enable our users to connect to our PDC (which is a
fileserver) from home via windows file sharing. Problem is, our file server
will be NATed as soon as I've re-designed the existing network.
I'd like to have a setup like this:
----ISP---[FW1]
| |------------- Official IPs (DMZ)
|----------- 192.168.0.0 (internal Net)
Anyone got an idea short of setting the PDC/Fileserver into the DMZ? I've
searched the archives and came up with a "not possible", but hey, you can
never know.
Thanks,
Joerg
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
