Re: ISA Server 2004 with one NIC on DMZ

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: Haim Beyhan (haimb_at_enigma.com)
Date: 11/16/04 

Date: Tue, 16 Nov 2004 16:25:39 +0200

When I added the second card and connected it directly to internal, it
worked but I deleted all the network rules except Local Host Access.
I'm not sure if there should be a rule between internal and dmz networks as
the ISA server is not actually working as firewall in our situation.

How secure is this configuration? I mean, if my ISA server is hacked, the
intruder cannot come into internal network through the second nic (connected
to internal) ?

BTW, I would like to know when I can buy your book about ISA Server 2004?

Thanks,

Haim

"Thomas W Shinder [MVP]" <tshinder@hotmail.com> wrote in message
news:evSDoH9yEHA.3976@TK2MSFTNGP09.phx.gbl...
> Hi Haim,
>
> What happens when you install a second NIC in the ISA firewall and then
> create access rules from Internal to External?
>
> Thanks!
> --
> Tom
> www.isaserver.org/shinder
> Get the book!
> Tom and Deb Shinder's Configuring ISA Server 2004
> http://tinyurl.com/3xqb7
> MVP -- ISA Firewalls
>
>
> "Haim Beyhan" <haimb@enigma.com> wrote in message
> news:OWyioGyyEHA.1400@TK2MSFTNGP11.phx.gbl...
> : Hi,
> :
> : We have Cisco Pix firewall with internal, dmz and external port to
> internet.
> : Isa server 2004 is installed with one nic on Windows 2000 server (not
> part
> : of the domain) and it is loctaed on dmz. I'm using it for Web publishing
> of
> : a web server in the internal network and everything is working fine.
> : I want to use that ISA server also as a proxy server with cache for
> internal
> : and dmz users. I enabled the cache and created an outbound access
> firewall
> : policy on the server and enabled all outgoing protocols. I have also a
> dns
> : server on dmz that resolves internet web sites.
> : The problem is I cannot access any site except www.microsoft.com when
> trying
> : direclty from ISA server and either from other machines . I receive the
> : following error:
> :
> : Error code:502 proxy error. The ISA server denied the specified URL.
> (12202)
> :
> :
> : Thanks in advance,
> :
> : Haim Beyhan
> :
> :
>
>

Relevant Pages

  • Re: Internet Intermittent Connection
    ... Internal Network: 192.168.100.1 - 192.168.100.255 ... any other networks and remove any additional ranges if they are added. ... "ISA Server detected a proxy chain loop. ... I have an intermittent Internet connection that has been going on ...
    (microsoft.public.isa)
  • Re: ISA Server 2004 and Application Events 14147
    ... This newsgroup only focuses on SBS technical issues. ... | any Internet access restriction from either the server or the internal ... |> Server computer is different from the ISA Server configuration. ... and add your internal network adapter. ...
    (microsoft.public.windows.server.sbs)
  • RE: ISA Server lost domain
    ... 172.16.18.131 is my External Network. ... Domian from the ISA server. ... adapter configuration for ISA server: ... >Intranet & the second one is used for internet, ...
    (microsoft.public.isaserver)
  • Re: Eventid 15108... spoof address ????
    ... clicked this and the 169 address appeared just after an IP on the network. ... > 2) Extract all files to a folder on ISA server ... > 'Microsoft Firewall' service. ... > |> server could receive some spoof attacks from the internet. ...
    (microsoft.public.windows.server.sbs)
  • Re: Internet Intermittent Connection
    ... First of all double check the "Internal" Network and make ... Second, double check the ISA server routing table, make sure that all routes ... make sure that if your DSL modem is NATting to the internet that ... The Physical Connection: ...
    (microsoft.public.isa)