Re: ISA 3-Leg Config Question

From: "Phillip Windell" <philwindell@xxxxxxxxxxx>
Date: Tue, 18 Mar 2008 14:43:39 -0500

"Kurt Loy" <KurtLoy@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:24A8B3D8-104E-4B1C-92CD-9C47AE7ED9D7@xxxxxxxxxxxxxxxx

I have an ISA 2K6 server I am configuring. It is a 3-Leg configuration with
the internal using a 192 subnet, and the perimeter using a 10 subnet. I
already have an existing ISA box with the same configuration but it is
running in a VM. I have duplicated all of the configuration(policy,
network
sets, network rules, etc) just like the existing box. Besides the fact the
it
is running in a VM, the only difference is that I have the internal
network
adapter at a different address for obvious reasons.

Everything is working except Internal to Perimeter traffic. I can ping
from
the internal to the perimeter, but that is about it. Also, the reverse is
not
true. I can't get any traffic from the Perimeter to the Internal. Any
ideas
what could be causing the issue?

If anyone needs more detail configuration information, please let me know.

Need:

1. The Relationship between the two Network Definitions (Routed or NATed)
2. Exact specs of the involved Access Rules
3. Wouldn't hurt to have the exact specs of the Network Definitons for both
Internal and the Perimeter

--
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html

Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc

Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.mspx

Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------

.

Prev by Date: Logging user name
Next by Date: Re: Logging user name
Previous by thread: Logging user name
Next by thread: Re: ISA 3-Leg Config Question
Index(es):
- Date
- Thread

Relevant Pages

Re: Internet Intermittent Connection
... Here are my IPs for the network: ... ISA Internal NIC: 192.168.100.1 ... Modem External: Public IP Address ... I have an intermittent Internet connection that has been going on for ...
(microsoft.public.isa)
Re: Disable dynamic route entries in Windows 2003?
... and how they're configured/managed by the network folks. ... My ISA servers have two NIC's: one in a VLAN that is an "internal" DMZ, ... So, from the standpoint of ISA Server, there are two separate interfaces ... the "Internal VLAN can NOT route to the Internet VLAN, ...
(microsoft.public.windows.server.networking)
Re: Connect the SBS to a remote IIS for Internet Printing
... the server can access the Internet with no problems at all. ... Checking network connection, and after a few seconds it says The ... the problem is cause by the configuration of ISA. ...
(microsoft.public.windows.server.sbs)
Re: Disable dynamic route entries in Windows 2003?
... have two Nics. ... to publish applications to the Internet; ... destination network through two different interfaces, ... If you correctly configure the ISA machine with respect to the VLANs and the ...
(microsoft.public.windows.server.networking)
Re: 3 Leg configuration issue.
... Does the ISA server have a routing table entry that describes how to reach ... Did you add this address range to the ISA Internal Network address table? ... Microsoft Internet Security & Acceleration Server: ...
(microsoft.public.isaserver)