cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

SharePoint Server 2013 Foundation Web/App Server two network adapters

Mihail Stacanov
Copper Contributor

‎Feb 27 2018 03:58 AM

‎Feb 27 2018 03:58 AM

SharePoint Server 2013 Foundation Web/App Server two network adapters

Hi all,

 

is this scenario supported by Microsoft and make sense?

 

SharePoint 2013 Foundation Web/App Server will have one adapter with public and one adapter with private IP Address?

Routing between two adapters will be configured.

SharePoint Server will have connection to SQL using internal adapter (private IP)

Firewall will be on SharePoint Server from Windows configured

 

What are the security and configuration concerns here?

 

Many thanks in advance.

 

Kind Regards,

Mihail Stacanov

Labels:
817 Views
0 Likes
3 Replies
Reply
3 Replies
Trevor Seward

‎Feb 27 2018 08:24 AM

‎Feb 27 2018 08:24 AM

Re: SharePoint Server 2013 Foundation Web/App Server two network adapters

Yes, it'll work. It's a bit complicated to support; what is your goal?
0 Likes
Reply
Mihail Stacanov

‎Feb 28 2018 12:52 AM - edited ‎Feb 28 2018 12:53 AM

‎Feb 28 2018 12:52 AM - edited ‎Feb 28 2018 12:53 AM

Re: SharePoint Server 2013 Foundation Web/App Server two network adapters

thanks,

 

the goal is to avoid configuration of external non windows firewalls.

 

the issue is here that I still can't understand as here written, that in this case firewall will not work: as answered to me here: https://social.technet.microsoft.com/Forums/sharepoint/en-US/aefa3c77-7947-4ff1-a7fb-eaa6aaeea569/sh...

But I can't understand why if I configure firewall for each profile: domain and private. Why will it not work?

 

Thanks

0 Likes
Reply
Trevor Seward

‎Feb 28 2018 07:40 AM

‎Feb 28 2018 07:40 AM

Re: SharePoint Server 2013 Foundation Web/App Server two network adapters

I'd strongly recommend not going down this path. All web-based applications should be fronted by a dedicated service to firewall traffic. In addition, for defense-in-depth, use a Reverse Proxy in front of SharePoint. There are plenty of free options (HAProxy, Nginx, Apache's mod_ssl).

It's not that your scenario _won't_ work, but it isn't the best security by any means.
0 Likes
Reply