Re: publishing SSL websites

Thanks Shijaz

I will look at these articles and see if I can get it to work.

Tony R


"Shijaz" <Shijaz@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:439ECAF9-1AE0-48D7-A420-A218C4C9CB6F@xxxxxxxxxxxxxxxx
Yes you can publish multiple SSL websites using ISA. You will have to use
SSL
Bridging.

See these articles:
Understanding SSL Bridgingand tunneling within ISA
http://www.isaserver.org/tutorials/Understanding_SSL_bridging_and_tunneling_within_ISA.html

Publishing Multiple Web Sites using a Wildcard Certificate in ISA Server
2004
http://www.microsoft.com/technet/prodtechnol/isa/2004/maintain/wildcard.mspx

Publishing Multiple SSL websites and OWA using SSL
http://www.itblueprint.ca/docs/isa2004/publishing/Publishing%20multiple%20websites%20and%20OWA%20using%20SSL.pdf


You cannot use host headers to direct web requests to the correct
webserver
when you are using SSL, because HTTP requests that use SSL are encrypted.
Host headers are part of the encrypted request and cannot be interpreted
or
routed to the correct site.

Regards,

--
Shijaz
MCSE:Security, CCNA
www.shijaz.com/isaserver


"TR" wrote:

Any suggestions on how to set this up so it will work?
Can i use one external nic and have a web certificate for www.clients.com
and have the traffic directed to the internal web server and then use a
certificate www.employees.com for the OWA and RWW for the SBS2003 box
itself?
thanks
TR


"Shijaz" <Shijaz@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:8A86B260-5D76-4946-8AD8-F863A4510FD5@xxxxxxxxxxxxxxxx
Two external interfaces on ISA 2004 is NOT supported.

See the following MS KB article:
Troubleshooting Unsupported Configurations in ISA Server 2004
http://www.microsoft.com/technet/prodtechnol/isa/2004/plan/unsupportedconfigs.mspx#Network


--
Shijaz
MCSE:Security, CCNA
www.shijaz.com/isaserver


"TR" wrote:

Hi all,

I am a newbie with ISA2004 so bear with me.

I have a SBS2003 Premium box with ISA2004 installed. The internal
network
side ip is 192.168.16.2 with a member webserver at 192.168.16.7. The
member
server hosts a secure website with a public certificate accessible
through
the ISA server 2004 box. There are two external nic's on the ISA box
with
different Ip's but within the same public subnet. I wish to have a
web
listener on the first public nic to host OWA and RWW for the employees
and
another weblistener on the second nic for our clients to access the
internal
web server using SSL. The SSL certificates would be for two different
domains. Is this a valid configuration for ISA?

Thanks
TR








.

Relevant Pages

  • Re: Certificate for SBS2003 for Multiple Public Domains REPOST
    ... I have one SBS box with ISA 04 and one WS03 box ... host multiple public domains on this server. ... SSL web site rules is the SBS/ISA box has to have a copy of each Cert ... >> The current SBS certificate generated by CEICW contains 1 public DNS ...
    (microsoft.public.windows.server.sbs)
  • Re: Importing Certificate
    ... I'm not able to run SSL on ISA yet. ... Certificate and Trusted Root Certificate \ Console Certificate Web Proxy ... Create the Web Publishing Rule (SSL between OWA external client and ISA - ...
    (microsoft.public.win2000.security)
  • Re: Cannot browse SSL pages
    ... you can publish the SSL-secured websites behind ISA by creating web ... publishing rules for each of them. ... configure a SSL listener on ISA, which would have allowed you to web-publish ... server certificate on ISA, then you create a web listener that uses that ...
    (microsoft.public.isa)
  • Re: publishing SSL websites
    ... Understanding SSL Bridgingand tunneling within ISA ... Publishing Multiple Web Sites using a Wildcard Certificate in ISA Server ...
    (microsoft.public.isa.configuration)
  • Re: SSL
    ... > I removed SSL from my web publishing rule and I'm do able to hit ... > The following are the steps that I've done on ISA and I don't know what ... > Certificate and Trusted Root Certificate) ... > IP Address: Firewall IP ...
    (microsoft.public.isa)