Re: ISA 2006 and Listeners Part 2!

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Since you explained yourself now, I understand what you were trying to
get to.

Thanks

AJ
Phillip Windell wrote:

"AndyJ" <andyjones99@xxxxxxxxxxxxx> wrote in message
news:1166452940.653352.126440@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
You are missing the point. There is such a thing as port forwarding and
its being done by my router.

That "router" is a SOHO device that I just explained are the "guilty" people
of inventing the non-term in the first place. Of course it calles it "port
forwarding", but it is wrong.
It is doing Static NAT (aka Reverse NAT). It happens at Layer3 not Layer4.
Ports are Layer4 addresses. I'm trying to help you and any one else reading
to understand what *really* happens in the technology so people actually
look at the problem correctly and can properly solve problems, instead of
being sucked in and confused by the "marketing-speak".
There no such thing as port forwarding.

The problem stems from the fact that I have to define different
listeners for each service when the services are all HTTP based. My
router can only forward HTTP packets to one IP address, so at that
stage its game over as the listeners for my other websites are
listening on a different IP.

Then you need multiple external public IP#s on the NAT box so you can Static
NAT what you need back to the proper listener. Or just get rid of the thing
and put ISA in its place and forget the Back-to-Back DMZ that you created
between them. 90% of the time people create these DMZs with no real purpose
for doing so and they only serve to get in the way of everything and cause
trouble. They usually block everything and everyone but the hacker.

What I was saying is that I could get my
router to direct HTTPS traffic to my OWA/EAS listener and get it to
forward HTTP traffic to the strandard web site listener.

Yes, that is two differnt protocols, so you can have two listeners on one
IP#. So now what? I guess I am still missing the point then.

--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com

The views expressed are my own (as annoying as they are), and not those of
my employer or anyone else associated with me.
-----------------------------------------------------

.

Relevant Pages

  • Re: ISA 2006 and Listeners Part 2!
    ... its being done by my router. ... It is doing Static NAT. ... listeners for each service when the services are all HTTP based. ... Phillip Windell ...
    (microsoft.public.isa.configuration)
  • Re: Certificate
    ... "Phillip Windell" wrote: ... I check my 2 listeners and they are properly bind to single IP each. ... Microsoft Internet Security & Acceleration Server: Partners ... Microsoft ISA Server Partners: Partner Hardware Solutions ...
    (microsoft.public.isa.publishing)