-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Confirmed.
- From MS TechNet:
"A site is separate in concept from Windows 2000-based domains
because a site may span multiple domains, and a domain may span
multiple sites. Sites are not part of your domain namespace. Sites
control replication of your domain information and help to determine
resource proximity. For example, a workstation will select a DC
within its site with which to authenticate."
See
http://www.microsoft.com/technet/treeview/default.asp?url=/TechNet/pro
dtechnol/windows2000serv/deploy/confeat/adsites.asp for more detailed
information.
scotty
- - Original Message -
From: "leon" <[EMAIL PROTECTED]>
To: "'Matt Andreko'" <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Monday, January 21, 2002 10:13 AM
Subject: RE: splitting up a network
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Why cant you have 1 domain and create the two offices as "sites".
>
> I thought that domain can encompass multiple sites and a site can
> encompass multiple domains. That was my understanding of how win2k
> domains worked.
>
> - -Original Message-
> From: Matt Andreko [mailto:[EMAIL PROTECTED]]
> Sent: Monday, January 21, 2002 8:38 AM
> To: [EMAIL PROTECTED]
> Subject: splitting up a network
>
> Hi there. I'm currently administering a network which is being
> split in
> half. Half of it is going to be placed on an OC3 where all our
> servers
> are, and the other half is our office, which is on a T1, going
> through a
> separate class C IP range.
>
> I'm trying to figure out a good way to setup this NT/2000 network
> with
> active directory over the 2 networks. I'd prefer to have them all
> in 1
> domain, so I don't have to deal with domain trusts and such. Is
> there a
> good way to do this, or do I need to setup 2 separate domains, one
> for
> each location, and do trust relationships between the 2? Netbios
> can be
> used through these 2 separate ip ranges, and is preferred (although
> it
> will be secured and audited regularly).
>
> Also, is there a good way to firewall the office machines, but
> still have them be part of the domain, but not publicly available
> (only to a
> certain group on the domain?). I would prefer to put all the
> machines
> behind a linksys or maybe even a cisco router, to keep them
> protected.
> The machines on the OC3 don't need firewall protection really.
>
> Any help would be appreciated.
>
>
>
>
> - --
> Matt Andreko
> On-Ramp Indiana
> (317)774-2100
>
>
>
>
> -BEGIN PGP SIGNATURE-
> Version: PGPfreeware 6.5.8 for non-commercial use
> <http://www.pgp.com>
>
> iQA/AwUBPExaW9qAgf0xoaEuEQJfEwCgxn1lGbzJYlTTuuqi2gS8yb3aFb4AoLRW
> tsaYXp0XZNHOpxDUKrdAkpMD
> =Hh4K
> -END PGP SIGNATURE-
>
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBPE+z/sCRV5J9bej9EQLREwCghVshOONSRUvlvjnG5F0XzlpolBoAn3wh
KKWEBpjU1p5IS4n2MynwQHZ3
=SRbD
-END PGP SIGNATURE-