Please Help - critical issue
From: Imran Vilcassim (mvimran_at_hotmail.com)
Date: 08/04/04
- Next message: Vladimir Lifliand [MSFT]: "Re: how access internet in isa2004 server localy?"
- Previous message: Robert R Kircher, Jr.: "Re: DHCP on External NIC ISA2K4"
- In reply to: Jessie: "Please Help - critical issue"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 3 Aug 2004 21:55:36 -0700
Hi Jessie,
can u explain what exactly you have tried to
do.. this info would help. but at a higher level the
following needs to be done.
(1)configure your Check Point firewall to allow the IP
address of the caching only ISA Server to access
outbound TCP 80, TCP 443, TCP 21 or any other protocols
that u desire.
(2)Ensure that the Web Proxy clients can resolve the ISA
server by the FQDN. Also ensure that the ISA Server can
access the CheckPoint Firewall.if the ISA Server and the
CP Firewall are on the same internal network, then this
shouldnt be a problem.
(3)Configure the TCP/IP Settings on the ISA Server.assign
the ISA Server a valid IP address and subnet mask, a
default gateway that will route Internet bound requests
to your Internet access device (CP Firewall),
and a DNS server that can resolve Internet host names.
The best option for the DNS server is an internal network
server that has been configured to use a Forwarder to
resolve Internet host names.
Note: Installing the ISA Server in cache only mode is a
bit different then what you might be used to if you
usually install in integrated mode. The main difference
is that there is no LAT to configure. The unihomed
caching-only ISA Server doesn't use a LAT because it's
connected to a single network; there is no concept of
internal and external, trusted or untrusted. The unihomed
caching-only ISA Server accepts requests for Web objects,
obtains the objects from the Internet servers, and sends
these objects back to the Web Proxy clients using the
same interface. The Incoming Web Requests and the
Outgoing Web Requests listeners are on the same physical
adapter.
(4)After Installing ISA, create your protocol rule and
your site and content rule.
(5)configure your browser to use the ISA server as a
Proxy server. this can be automated by using WPAD.
hope this helps.
Regards
Mohamed Imran Vilcassim (MCSE,MCT)
Technical Specialist - Microsoft MDP Sri lanka
email:mvimran@hotmail.com
>-----Original Message-----
>Hello everyone,
> i have been working day and night to fix
>this problem but still without any luck and my manager
is
>getting increasingly frustrated with me. i hope someone
>would be able to help me out with this problem.
>
>I have a server with ISA server installed on it. I also
>have checkpoint firewall as the perimeter firewall at
the
>gateway. i am trying to configure ISA as a caching
server
>on my intranet so that clients will access the intenet
>through the ISA server. i have tried many methods of
>doing this in combination with the cp firewall, but i
>have failed miserably. can anyone give me some guidlines
>as to how this can be done?
>
>Thanks a million in advance.
>
>Jessie
>.
>
- Next message: Vladimir Lifliand [MSFT]: "Re: how access internet in isa2004 server localy?"
- Previous message: Robert R Kircher, Jr.: "Re: DHCP on External NIC ISA2K4"
- In reply to: Jessie: "Please Help - critical issue"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
