Re: PPTP Server publishing in ISA 2004 doesn't work?
From: Thomas W Shinder [MVP] (tshinder_at_hotmail.com)
Date: 07/25/04
- Next message: Thomas W Shinder [MVP]: "Re: ISA Server 2004 and kerberos ?"
- Previous message: Rizwan: "want solution"
- In reply to: Jéjé: "Re: PPTP Server publishing in ISA 2004 doesn't work?"
- Messages sorted by: [ date ] [ thread ]
Date: Sun, 25 Jul 2004 14:25:54 -0500
Hi Jerome,
But the ISA 2004 firewall allows you very fine, granular access control over
what resources the user can access once the VPN connection is established.
If you were to use a typical packet filter "firewall", you lose all of that
and the VPN clients can then pose serious risk to your entire network! This
is a serious consideration you should take before switching to a less secure
solution.
HTH,
-- Tom www.isaserver.org/shinder Get the book! Tom and Deb Shinder's Configuring ISA Server 2004 http://tinyurl.com/3xqb7 MVP -- ISA Firewalls "Jéjé" <willgart@BBBhotmailAAA.com> wrote in message news:#ID3ZAccEHA.3944@tk2msftngp13.phx.gbl... : there is a reason for this publishing... : : I've 1 isa server and my local domain : also, I've a standalone server, and I want to allow some external client to : be connected to this standalone through a VPN connection directly. : My client will have an account on this standalone server only. : : If I'm using my isa server as the VPN server, then my client will have 1 : login for the VPN and 1 for the standalone server (not in the same domain, : so its not easy to synchronize) : : Maybe I'll replace my ISA Server by a small hardware firewall with VPN : builtin to protect this specific server. : : "Thomas W Shinder [MVP]" <tshinder@hotmail.com> a écrit dans le message de : news:%23HeX5ubcEHA.3096@tk2msftngp13.phx.gbl... : > Hi Jerome, : > : > Configure the ISA firewall as your VPN endpoint. That will fix this : problem. : > There's no reason to publish a VPN server, unless you have a back to back : > ISA firewall configuration. : > : > HTH, : > -- : > Tom : > www.isaserver.org/shinder : > Get the book! : > Tom and Deb Shinder's Configuring ISA Server 2004 : > http://tinyurl.com/3xqb7 : > MVP -- ISA Firewalls : > : > : > "Jéjé" <willgart@BBBhotmailAAA.com> wrote in message : > news:ucILbgZcEHA.2944@TK2MSFTNGP11.phx.gbl... : > : I'm currently trying ISA 2004 : > : I've 2 Win 2003 server (1 with isa, second is the internal application : > : server) : > : The second server is also my VPN Server : > : : > : So, I've added a server publishing rule to route all PPTP request to my : > : internal server : > : : > : but this doesn't works.The user cannot be authenticated and the : connection : > : will be closed after 30sec. : > : : > : In the logging screen, I see the connection tried by the user to the : port : > : 1723 (connection established) : > : then the VPN Server respond : > : : > : but the user will never be authenticated. (error 721) : > : : > : any idea? : > : : > : thanks : > : : > : Jerome : > : : > : : > : > : :
- Next message: Thomas W Shinder [MVP]: "Re: ISA Server 2004 and kerberos ?"
- Previous message: Rizwan: "want solution"
- In reply to: Jéjé: "Re: PPTP Server publishing in ISA 2004 doesn't work?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
Loading
