Re: one to one NAT
From: Matt-Helm (anonymous_at_discussions.microsoft.com)
Date: 08/17/04
- Next message: Thomas W Shinder [MVP]: "Re: one to one NAT"
- Previous message: Eric Shen [MSFT]: "RE: ISA and remote desktop configuration"
- In reply to: Thomas W Shinder [MVP]: "Re: one to one NAT"
- Next in thread: Thomas W Shinder [MVP]: "Re: one to one NAT"
- Reply: Thomas W Shinder [MVP]: "Re: one to one NAT"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 17 Aug 2004 04:50:44 -0700
Hey! THANKS!
I just really wanted to know if I could do that or not =)
I guess I cant, which is fine. So now if I wanted to use
ISA 2004 as a back fire firewall how would I go about
setting it up?
Do I still need two network cards? Do I use the route
option instead of the NAT option?
Is there some sort of tutorial that explains this?
Any help is appreciated!
Thank
helm
>-----Original Message-----
>Hi Matt,
>
>All outbound connections will have the source of the
primary address on the
>external interface of the ISA firewall. If you want a
NAT server, CP is a
>good bet (PIX is a good NAT server too). If you need a
firewall, ISA is the
>firewall of choice.
>
>HTH,
>--
>Tom
>www.isaserver.org/shinder
>Get the book!
>Tom and Deb Shinder's Configuring ISA Server 2004
>http://tinyurl.com/3xqb7
>MVP -- ISA Firewalls
>
>
>"Matt-Helm" <anonymous@discussions.microsoft.com> wrote
in message
>news:005001c483e1$00da6710$a301280a@phx.gbl...
>: Well.. Could you please help me wrap my head around
what
>: I'm suppose to do if I have a client with the ip
>: 10.1.1.25 -> whatever.outside.ip.25 This client is
using
>: a VPN for EDI on a specific port on a specific external
>: IP that is being mapped to the internal one.
>:
>: Now on the ISA 2004 box i can certainly add that
external
>: IP to the outside interface, not a problem. I still
cant
>: figure out how to "publish" this to work.
>:
>: What do I do?
>:
>: Thanks
>: Helm
>: >-----Original Message-----
>: >
>: ><anonymous@discussions.microsoft.com> wrote in message
>: >news:6d7f01c483b0$b97d0ec0$a501280a@phx.gbl...
>: >> "You don't"
>: >>
>: >> Don't what?? I want to do ONE TO ONE NAT! Either I
can
>: or
>: >> I cant with ISA 2004! =)
>: >
>: >You don't do One-toOne NAT. That is what you do with
a
>: NAT box,.... not
>: >with ISA. ISA is not a "nat box" it is a proxy server
>: and that is and
>: >entirely different technology.
>: >
>: >>I have been working with ISA 2004 Beta and searching
>: for what appears to
>: >be
>: >> not possible. MS really needs to include a static
nat
>: feature in ISA if
>: >it's
>: >> ever going to fully replace the Cisco,
Checkpoint, ...
>: environments. I've
>: >
>: >No, it doesn't have to do that to replace those. The
>: problem is that you
>: >have the wrong method stuck in your head as if one-to-
>: one nat was the only
>: >way of doing things. It is not the only way to do
>: something. With ISA you
>: >use the "Publishing" features. Use the Server
>: Publishing features like I
>: >told you in the last post.
>: >
>: >--
>: >
>: >Phillip Windell [MCP, MVP, CCNA]
>: >www.wandtv.com
>: >
>: >
>: >.
>: >
>
>
>.
>
- Next message: Thomas W Shinder [MVP]: "Re: one to one NAT"
- Previous message: Eric Shen [MSFT]: "RE: ISA and remote desktop configuration"
- In reply to: Thomas W Shinder [MVP]: "Re: one to one NAT"
- Next in thread: Thomas W Shinder [MVP]: "Re: one to one NAT"
- Reply: Thomas W Shinder [MVP]: "Re: one to one NAT"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
