locked
Directors and multiple pools RRS feed

  • Question

  • I've heard conflicting information on this.  The technet documentation says that Directors are optional.  The resource kit says if you have multiple pools in your organization and you want external users to route to their correct pool, you need your next hop set to a Director for referrals to work.  Shouldn't we be able to use a regular Pool as our next hop and have that refer users to the correct Pool?
    Monday, September 1, 2008 12:11 AM

All replies

  • Yes you can configure an existing pool as a Director

     

    A Director gives you more security if users connect from the internet and use the director as next hop and to do the authentication and route the traffic.

     

    Monday, September 1, 2008 9:08 AM
  • So an existing pool that contains users can be used to refer external users to their correct pool?
    Monday, September 1, 2008 2:10 PM
  • Yes

     

    Monday, September 1, 2008 3:40 PM
  • The main thing a director server will protect you from is a denial of service attack.

    If the server(s) where users first authenticate is a pool then any attempt to overload the server will directly affect those users hosted in that pool.

    If you're comfortable that this won't be a problem then you may not require a director server

     

    Make sure you consider the additional load on the pool server(s) caused by the additional authentications it will be performing.

    Tuesday, September 2, 2008 4:50 PM