Re: PC Anywhere Traffic
From: Phillip Windell (_at_.)
Date: 02/17/05
- Previous message: Mike Cave: "Re: PC Anywhere Traffic"
- In reply to: Mike Cave: "Re: PC Anywhere Traffic"
- Next in thread: Phillip Windell: "Re: PC Anywhere Traffic"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 17 Feb 2005 12:17:23 -0600
You don't "open ports" with ISA,..it doesn't work that way.
Even if you did do it that way, that is not going to make an internal
machine runing on internal private addresses available to the public. How
would someone out on the internet target a machine running a private IP#
(say 192.168.5.2) and expect to route to it? How would it know where to
route when there are tens of thousands (hundreds of thousands?) of machines
around the world using that same IP#?
It requires the Publishing features of ISA. You Publish the PCA Host using
the innermost ISA which Publishes it to the external Nic of that inner ISA.
You then use the outer ISA to Publish the inner ISA *as if* it was the PCA
Host. In my opinion this is a "lousey" situation, and I know that I
wouldn't even know how to perform it exactly correct.
The right way to do this is via VPN. But with a "two ISA" Back-to-Back DMZ,
setting up the VPN would be a real hassle. You may need to run one VPN
Tunnel inside a second VPN Tunnel. Go to www.isaserver.org and do a search
with the key words DMZ and VPN and look for the article on the
"Back-to-Back" scenerio.
-- Phillip Windell [MCP, MVP, CCNA] www.wandtv.com "Mike Cave" <MikeCave@discussions.microsoft.com> wrote in message news:5B802B42-042F-43A0-A761-04C525753A66@microsoft.com... > Guys, I have a vendor that's in Idaho that needs access to a PC Anywhere box > internally. Our network consist of a back to back ISA firewalls so the client > needs ports open through both firewalls. I did exactly as Cyskon article said > according to this. I look at the ISA logs on the front gate and it's blocking > ports 5631. Is there something I'm forgetting here? > > "http://www.isaserver.org/tutorials/Publishing_a_host_using_PCAnywhere_behin d_ISA.html">http://www.isaserver.org/tutorials/Publishing_a_host_using_PCAny where_behind_ISA.html</a> > > Thanks, > > Michael > > > > "Mike Cave" wrote: > > > Thanks alot Cyskon!!!! > > > > "Cyskon" wrote: > > > > > <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> > > > <html> > > > <head> > > > <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type"> > > > <title></title> > > > </head> > > > <body bgcolor="#ffffff" text="#000000"> > > > <font face="Garamond">Thanks Dave.</font><br> > > > <br> > > > David Dixon wrote: > > > <blockquote cite="mideFK$zcR3EHA.2288@TK2MSFTNGP11.phx.gbl" type="cite"> > > > <pre wrap="">Try this, but with you being the remote you would have to make the inbound > > > an outbound. > > > > > > <a class="moz-txt-link-freetext" href="http://www.isaserver.org/tutorials/Publishing_a_host_using_PCAnywhere_ behind_ISA.html">http://www.isaserver.org/tutorials/Publishing_a_host_using_ PCAnywhere_behind_ISA.html</a> > > > > > > </pre> > > > </blockquote> > > > </body> > > > </html> > > >
- Previous message: Mike Cave: "Re: PC Anywhere Traffic"
- In reply to: Mike Cave: "Re: PC Anywhere Traffic"
- Next in thread: Phillip Windell: "Re: PC Anywhere Traffic"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
