RE: Single Nic - Default Gateway - Isa 2006
- From: Kyle Blake <KyleBlake@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 14 Jun 2007 14:51:02 -0700
Thats great news! No problem I can reply daily on this post!
So single NIC interface, web proxy client...configured by gpo to all clients.
Set the single interface in network settings of o/s to use default gateway
IP of existing perimeter firewall/proxy server.
I'm curious when creating rules if the 127.0.0.1 interface is local
And the IP address of the machine on local LAN is considered EXTERNAL.
Basically the web proxy should handle all http + https + ftp requests.
Q: Does proxy client authenticate?
I'll go ahead and build this.
I forgot the link that mentions FTP is not allowed with proxy client.
If I find it I'll post.
"ElMajdal" wrote:
.client configuration.I understand I can NOT FTP upload but can FTP download using proxy only
Nope, this info is not right, you can upload, just read my article here :
http://elmajdal.net/isaserver/Allowing_FTP_Uploads_Through_ISA_Server_2004_2006.aspx
Will be waiting your reply regarding the Proxy Solution and the FTP ;)
HTH,
Tarek
--
_____________________________
Tarek Majdalani
Computer Engineer, CIW, MCSA: Security 2000/2003, TS: Windows Vista
Website : http://www.elmajdal.net/ISAServer
"Kyle Blake" wrote:
Finally a solution! Thank you.
Now I just have to try this out and see if I can get this to work!
It's not to hard to get a gpo to push proxy settings to clients.
I understand I can NOT FTP upload but can FTP download using proxy only
client configuration.
Correct? AS per docs found on M.S.
"ElMajdal" wrote:
You can Set your Router as the Default Gateway, but inorder to use ISA Server
( single NIC ) you will need to setup the proxy on all clients.
--
_____________________________
Tarek Majdalani
Computer Engineer, CIW, MCSA: Security 2000/2003, TS: Windows Vista
Website : http://www.elmajdal.net/ISAServer
"Kyle Blake" wrote:
That makes sense, of course. . . That one slipped by me.
Can I set the default gateway of the internal nic to be the router?
How else would these clients get redirected if it's a single nic?
My router is another firewall that currently is a proxy so this should work
out.
If I'm explaining it right.
Thanks very much guys!
------------------------------------------------------
"ElMajdal" wrote:
With Single NIC ISA Server, you can only use it as a Web Proxy !!
and their for, you can not set your clients as Firewall Client or SecureNat
Client.
read this for more info :
http://www.microsoft.com/technet/isa/2004/plan/unsupportedconfigs.mspx
the part where it says : Configuring ISA Server with a Single Network
Adapter Configuration
--
_____________________________
Tarek Majdalani
Computer Engineer, CIW, MCSA: Security 2000/2003, TS: Windows Vista
Website : http://www.elmajdal.net/ISAServer
"Kyle Blake" wrote:
Hi,
I'd like to roll out firewall client software to my users.
I understand in 2006 I have to manually publish the share etc.
After its rolled out I would like to configure my isa 2006 box with single
nic.
I will disable my existing gpo which pushes the automatic configuration of
http proxy settings (192.168.177.11) to clients.
Afterward the firewall client will be directing http + https packets to the
new ISA.
I'm curious if all I need to do is adjust the default gateway of the
internal nic on the ISA box to be the old "proxy server address".
192.168.177.11
Thank you very much!
This sounds right correct doesn't it?
- References:
- RE: Single Nic - Default Gateway - Isa 2006
- From: Kyle Blake
- RE: Single Nic - Default Gateway - Isa 2006
- From: ElMajdal
- RE: Single Nic - Default Gateway - Isa 2006
- From: Kyle Blake
- RE: Single Nic - Default Gateway - Isa 2006
- From: ElMajdal
- RE: Single Nic - Default Gateway - Isa 2006
- Prev by Date: RE: Single Nic - Default Gateway - Isa 2006
- Next by Date: Re: All Authenticated Users problem
- Previous by thread: RE: Single Nic - Default Gateway - Isa 2006
- Next by thread: System policy
- Index(es):
Relevant Pages
|
