Educause Security Discussion mailing list archives
Re: AD across multiple campuses
From: Michael Sinatra <michael () RANCID BERKELEY EDU>
Date: Fri, 20 Feb 2009 14:24:02 -0800
On 02/20/09 14:11, Dexter Caldwell wrote:
I recommend they use site-site vpn tunnels, mpls or some other private links as you specified for securied entry points for the A/D replicatoin and communication. I see no reason off the top of my head that the addressing scheme must change to accomodate this.
If the RFC1918 addresses really do overlap in some areas, as the original post indicated, then those overlapping addresses will need to be renumbered. Otherwise, two different hosts in two different sites will appear to have the same address to your DCs. What you really need is something along the lines of ULAs, but I don't want to get into *that* debate. michael
Current thread:
- AD across multiple campuses Jeff Kell (Feb 20)
- <Possible follow-ups>
- Re: AD across multiple campuses John Ladwig (Feb 20)
- Re: AD across multiple campuses Dexter Caldwell (Feb 20)
- Re: AD across multiple campuses Michael Sinatra (Feb 20)
- Re: AD across multiple campuses Scott Weyandt (Feb 20)
- Re: AD across multiple campuses Dexter Caldwell (Feb 22)
- Re: AD across multiple campuses John Ladwig (Feb 23)