Re: Perimeter network question.

---

• From: "Phillip Windell" <philwindell@xxxxxxxxxxx>
• Date: Mon, 23 Jul 2007 13:53:04 -0500

---

"Eddy" <Eddy@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:ECC95FDA-D01D-4335-9EAF-5DAB934593A4@xxxxxxxxxxxxxxxx

A leased line was brought in and a Cisco Router was provided. The public
side of the router is 192.168.1.1.

That is not a Public side of anything. That is an RFC Private Address.

I created access rules that I hoped I could send traffic out the perimeter
NIC based on the ports specified in the rule. I defined the Perimeter NIC
as
192.168.1.2

Get rid of the new "router".
Plug the new cable directly into the third Nic of the ISA and address the
Nic accordingly. The ISA *is* the "router" in this context.

Create a Static Route in the OS on the ISA box that tells it what path to
take for the particular Destination IP Subnet you are dealing with. The
"gateway" of the static route will be the IP# of the Default Gateway the
"router" was using before you removed it.

Create an Access Rule to satisfy the needs of the internal Application that
needs to go outbound.


--
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html

Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc

Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp

Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------


.

---

• Prev by Date: Re: Gateway Time out Issue Single NIC Web Proxy Config
• Next by Date: Re: Perimeter network question.
• Previous by thread: Re: Gateway Time out Issue Single NIC Web Proxy Config
• Next by thread: Re: Perimeter network question.
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: alternative to remote internal range in LAT? ... Understanding the ISA 2004 Access Rule Processing ... Microsoft Internet Security & Acceleration Server: Partners ... Microsoft ISA Server Partners: Partner Hardware Solutions ... (microsoft.public.isa.configuration) Re: Terminal services connection from PC thru ISA2000 ... You need to create an access rule allowing the RDP protocol from the IP ... If you want to control access via user/groups rather ... Also before you go to the router people you may want to check the ISA logs ... (microsoft.public.isa) Re: SMTP Server publishing - Failed Connection Attempt ... "Requests appear to come from ISA" enabled. ... Understanding the ISA 2004 Access Rule Processing ... Microsoft Internet Security & Acceleration Server: Partners ... Microsoft ISA Server Partners: Partner Hardware Solutions ... (microsoft.public.isa.publishing) Re: New Policy for certain IP Range ... I am struggling in creating a new policy in ISA 2004, ... Understanding the ISA 2004 Access Rule Processing ... Microsoft Internet Security & Acceleration Server: Partners ... (microsoft.public.isa.configuration) Re: Windows Vista, Firewall Client and Outlook 2003 ... Jim Harrison (ISA SE) ... Understanding the ISA 2004 Access Rule Processing ... Troubleshooting Client Authentication on Access Rules in ISA Server 2004 ... Microsoft Internet Security & Acceleration Server: Partners ... (microsoft.public.isa)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > ISA  > microsoft.public.isa.configuration  > 2007-07