Re: Two 2006 Questions
- From: "Phillip Windell" <philwindell@xxxxxxxxxxx>
- Date: Fri, 28 Mar 2008 09:17:42 -0500
"Larry Heimendinger" <LarryHeimendinger@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message news:5D2E0BF9-9615-4597-B2F1-2FD72A6A8200@xxxxxxxxxxxxxxxx
I am trying to set up a edge configuration ISA 2006 Servers between a small
office and a branch office.
An "edge configuration" does not connect two offices together. It connects
an office to the Internet.
You have to create a Site-to-Site VPN Connection to connect two offices
together.
1. The branch is using ClearWire for their ISP, single IP address but
static. I have it connected into the External configured NIC on the ISA
server. WHen I monitor it with a querry of not allowed, I am getting
almost
continuous denied connections where the destination is the local machine
with
255.255.255.255. The IP ports are all over the place, mostly big numbers,
and an occassional RIP message.
That is perfectly normal. Leave it alone.
What is worse, when I disconnect the existing DSL modem and plug the
internal NIC from the ISA server into the switch in place of the DSL, none
of
the internal computers seem to be able to communicate.
There is no way we can be there and see for ourselves what kind of cabling
issue you may have created that is making a mess out of everything. Just
simply pluging the ISA into the LAN should not effect anything normally.
server set up as the DHCP server. change its IP address to be on an
excluded
address for the DHCP server, and I can see other machines trying to get
leases, but the ISA server is kicking them out with the destination
address
of 255.255.255.255 along with everything else.
No the ISA is not blocking the clients. It is blocking the Broadcast packets
to *itself*. Broadcast packets go to *everyone*,...that's what broadcast
packets "do",...ISA is just rejecting them just like it is supposed to do.
Any suggestions as to fixes or a place to look are much appreciated.
With ISA2006,...a 7 part series
Creating a Site to Site VPN using the ISA 2006 Firewall Branch Office
Connection Wizard (Part 1)
http://www.isaserver.org/tutorials/Creating-VPN-ISA-2006-Firewall-Branch-Office-Connection-Wizard-Part1.html
Creating a Site to Site VPN using the ISA 2006 Firewall Branch Office
Connection Wizard (Part 2)
http://www.isaserver.org/tutorials/Creating-VPN-ISA-2006-Firewall-Branch-Office-Connection-Wizard-Part2.html
Creating a Site to Site VPN using the ISA 2006 Firewall Branch Office
Connection Wizard (Part 3)
http://www.isaserver.org/tutorials/Creating-VPN-ISA-2006-Firewall-Branch-Office-Connection-Wizard-Part3.html
Creating a Site to Site VPN using the ISA 2006 Firewall Branch Office
Connection Wizard (Part 4)
http://www.isaserver.org/tutorials/Creating-VPN-ISA-2006-Firewall-Branch-Office-Connection-Wizard-Part4.html
Creating a Site to Site VPN using the ISA 2006 Firewall Branch Office
Connection Wizard (Part 5)
http://www.isaserver.org/tutorials/Creating-VPN-ISA-2006-Firewall-Branch-Office-Connection-Wizard-Part5.html
Creating a Site to Site VPN using the ISA 2006 Firewall Branch Office
Connection Wizard (Part 6)
http://www.isaserver.org/tutorials/Creating-VPN-ISA-2006-Firewall-Branch-Office-Connection-Wizard-Part6.html
Creating a Site to Site VPN using the ISA 2006 Firewall Branch Office
Connection Wizard (Part 7)
http://www.isaserver.org/tutorials/Creating-VPN-ISA-2006-Firewall-Branch-Office-Connection-Wizard-Part7.html
.
- Follow-Ups:
- Re: Two 2006 Questions
- From: Larry Heimendinger
- Re: Two 2006 Questions
- References:
- Two 2006 Questions
- From: Larry Heimendinger
- Two 2006 Questions
- Prev by Date: Two 2006 Questions
- Next by Date: Re: Two 2006 Questions
- Previous by thread: Two 2006 Questions
- Next by thread: Re: Two 2006 Questions
- Index(es):
Relevant Pages
|
