Re: NAT vs Route checking

Thank you for your answer, however I did not make it clear that I was
capturing the packets on the ISA server on the external NIC, so should I not
see the change in IP address there when it is NATed and the original ip
address when it is being routed? In both cases I see the ISA server external
ip address in the captured packets suggesting that it is being NATed even
when I have selected routing.

Thank you



"Phillip Windell" wrote:

"Karl Shoulders" <Karl Shoulders@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:ABEAD5E1-C72D-4C1B-974D-91754A0577A2@xxxxxxxxxxxxxxxx
Does anyone know if it is possible to capture the packets from ISA and
show
that the traffic is being routed or NATed?

I have setup 2 tests one which should be routed and the other NATed but
the
captured packets look the same. I was expecting the NATed one to show the
address change from the local workstation to the public ip address of the
ISA
server but it does not.

You cannot see that in a capture because you are looking at the packets
after the fact (or before the fact). The process takes place inside the
device performing it,...it is not visible outside of the device.

1. If the packets are routed the Source IP# will be the IP# of the Client
machine that the packet originated from. The Destiantion IP# is unchanged.

2. If the packets are NATed or proxied then the Source IP# will be the
external IP# of the NAT box or Proxy device. The Destiantion IP# is
unchanged.

Proxying and NAT'ing are two entirely different technologies,...but the end
result still appears the same way.

--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com

The views expressed are my own (as annoying as they are), and not those of
my employer or anyone else associated with me.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html

Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc

Microsoft Internet Security & Acceleration Server: Guidance
http://www.microsoft.com/isaserver/techinfo/Guidance/2004.asp
http://www.microsoft.com/isaserver/techinfo/Guidance/2000.asp

Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp

Deployment Guidelines for ISA Server 2004 Enterprise Edition
http://www.microsoft.com/technet/prodtechnol/isa/2004/deploy/dgisaserver.mspx
-----------------------------------------------------




.

Relevant Pages

  • ISA as a One-legged Route
    ... By one-legged route I mean that the routing device forwards the packet to be ... I'm currently on ISA Server 2K4 SP1. ... We thus have two holes by which packets leave the building, ... ISA Server has a route for the remote site that ...
    (microsoft.public.isa.configuration)
  • Re: Getting OSPF Routes on ISA 2004 RRAS
    ... The live log does not show any OSPF packets when I ran a query. ... Understanding the ISA 2004 Access Rule Processing ... Deployment Guidelines for ISA Server 2004 Enterprise Edition ...
    (microsoft.public.isa)
  • UDP Rule Ignored
    ... I have an ISA Server 2004 rule that seems to be not taking, ... stranger is how the monitor is showing the packets. ... One of our "internal" segments is a dedicated NTP server on Windows that is ... What I see on the monitor of ISA Server 2004 baffles me. ...
    (microsoft.public.isa)
  • MGCP Add-in or Port Forward because Publish doesnt work?
    ... ISA Server forwards Port to ISA Server. ... These packets are all MGCP... ... external network through a diffrent interface, ...
    (microsoft.public.isa)
  • Re: Do Not Fragment Bit
    ... extranet. ... When the packets come from the server the "Do not fragment" bit ... is there a way to tell the ISA server to ignore that and fragment the ...
    (microsoft.public.isa.configuration)