Re: Data Access.

Firewalls or other network gyrations are not the way to solve this problem. This is a data security problem, which is best solved using mechanisms designed for that. In this case, that includes shared folders with proper NTFS permissions. Define the permissions using access control lists composed of security groups, which in turn are composed of individual user IDs.

--
Steve Riley
steve.riley@xxxxxxxxxxxxx
http://blogs.technet.com/steriley
http://www.protectyourwindowsnetwork.com


"Angel" <Angel@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:4626F4CA-D0BC-4C01-92B2-CD1C7BB6EB24@xxxxxxxxxxxxxxxx
Thanks for responding.

Sorry, but two posible solutions are not valid forme.
First, the firewall close port of all share resources.
Second: that is posible, but i work in a educational center, where
pupil´s data and teacher´s data are stored in a diferent
server(server_pupìl, server_teacher). When a teacher connect to
server_teacher, computer have a special ip and router pass traffic. While, if
pupil tries connect to server_teacher, router stop traffic.
Router pass traffic when a pupil connect to server_pupil

But now are stored in one server, with two network cards.

Any idea ?



"apo" wrote:

yep, you can do that

use a firewall, appoint a ip that cant communicate with a share port( but im
so sorry i dont know the number of a share application port)

but we've other choice

use NTFS permissions and share folder permissions, you can appoint who can
access the resource and who cant, this way can get a same effect with a
firewall, and they get more flexibility than a firewall

"Angel" <Angel@xxxxxxxxxxxxxxxxxxxxxxxxx> 写入消息
news:65C0194F-F9FF-44C9-B005-B4CECB01A0CE@xxxxxxxxxxxxxxxx
> In a server with a dual network card, i need connect one ip to a > network
> and
> other to diferent network card. This is no problem.
> But when share a resource, i need that only one interface can connect > to
> share resource.
>
> Is possible ?
>
.

Relevant Pages

  • RE: can ping but not browse
    ... I have stopped the firewall. ... # are safed from all (security) hazards. ... firewall/bastion host to the internet ... # internet and to an internal network, ...
    (Fedora)
  • Re: Segregating networks VLANs or Subnets
    ... network, you can leave NTFS permissions alone. ... the firewall can route just as well. ... > Microsoft Internet Security & Acceleration Server: ...
    (microsoft.public.windows.server.networking)
  • Re: Why not use NETBEUI on Windows XP ??
    ... Trusted zones means that firewall rules will be bypassed for any or certain ... not count on netbeui being a defense for such as long as smb connectivity ... while the connection is open. ... > Microsoft Networking components on my network. ...
    (microsoft.public.windowsxp.network_web)
  • Re: Why not use NETBEUI on Windows XP ??
    ... Trusted zones means that firewall rules will be bypassed for any or certain ... not count on netbeui being a defense for such as long as smb connectivity ... while the connection is open. ... > Microsoft Networking components on my network. ...
    (microsoft.public.win2000.networking)
  • Re: Simple Printer Sharing/Networking Question
    ... And all 3 desktop computers are running Windows XP Pro ... We have turned on sharing for the network printers (in association with this ... caused by 1) a misconfigured firewall or overlooked firewall (including ...
    (microsoft.public.windowsxp.network_web)