today I was trying to publish a mailserver in a perimeter network with
ISA 2006. I found out that the outgoing smtp packets are translated to
the first external ip address of the isa server itself and not to the
additional ip address that is configured in the listener of the
mail-server publishing rule.
The website isaserver.org states that this is true for ISA 2000 and
can't be changed even by use of the wspcfg.ini.
Is this still true for the ISA 2006? As a former checkpoint firewall SE
I simply can't believe that as it renders the ISA almost useless for
being the frontline firewall.
Can someone please shed some light on this question?
Re: ISA and SourceNAT ... I don't know about ISA 2006, but this is a Windows thing and not an ISA ... If you bind multiple addresses to any Windows server,... As a former checkpoint firewall SE I ... (microsoft.public.isa.publishing)
Re: ISA 2004 Setup: Active Directory Domains ...ISA is secure enough and works beautifully when joined ...federated forest. ... A small excerpt from the article ("Perimeter Network Scenario" paragraph): ... > Now I have to get him a new ISA Server 2004 running, ... (microsoft.public.isaserver)
Re: ISA 2004 Setup: Active Directory Domains ... > ISA in a separate, federated forest (not a separate domain of the same ... > An organization might need to publish resources in the perimeter network... >> Now I have to get him a new ISA Server 2004 running, ... (microsoft.public.isaserver)
Re: Connect to Internet via external connection and DMZ network? ... acts as a gateway to the internet, i.e. what you refer to as "Perimeter" ... not actually a perimeter network configured on ISA itself. ... No. ISA does not support more than one "external" interface (be it through ... I have an External connection and a Perimeter network which ... (microsoft.public.isa)
Re: ISA 2006 ... of the watchguard firewall and all internal clients can access the perimeter network via watchguard ... how can i access the perimeter network via ISA 2006 server without creating access rule on the isa, can i do this, ... if traffic should flow through ISA server, you must create a network rule and a firewall rule to let flow traffic through ISA! ... (microsoft.public.isa)
