LionelB Posted February 1, 2015 Report post Posted February 1, 2015 Hello,I am looking for some design recommendations for my test environment that I would like to apply to one production environment.I am working with 2 domains (2 forests) with no trust relationships.Domain A : internalDomain B : DMZFrom a firewall point of view, only the ports from the internal to the DMZ will be opened.From the internet to the DMZ, only HTTPS will be opened.Currently, I only manage the clients connected to the internal domain.I would like to deploy a new management point in DMZ that will allow me to manage my DMZ clients and my Internet clients.Should I use 2 management points :- one for the DMZ clients- one dedicated to my internet clientsIf I use only one MP, should I allow Intranet and Internet clients ?The only documents I can find on Technet require too many ports to be opened in the firewall (From DMZ to Internal) and can't be applied to my environment.Thanks. Quote Share this post Link to post Share on other sites More sharing options...
cfreeman21 Posted October 25, 2016 Report post Posted October 25, 2016 Did you get this all ironed out? I am wanting to do something very similar. What ports did you open on each server and what ports did you open on the firewall? Quote Share this post Link to post Share on other sites More sharing options...
