Re: Ports needed for ISA 2004 (DMZ)?
- From: "Magoo" <magoo-nospam@xxxxxxxxxxx>
- Date: Mon, 9 May 2005 14:26:45 -0700
Sorry I didn't understand what entries I would need to put in the firewall
to cover the reverse NAT scenario you mentioned ? Can you elaborate on that
?
"Phillip Windell" <@.> wrote in message
news:ORcAANKVFHA.3868@xxxxxxxxxxxxxxxxxxxxxxx
>
> "Magoo" <magoo-nospam@xxxxxxxxxxx> wrote in message
> news:O8O4AKKVFHA.3544@xxxxxxxxxxxxxxxxxxxxxxx
> > I have two ISA 2004 Enterprise boxes configured as NLB integrated (DMZ).
> > In my external DNS servers, I specify the virtual IP address = 10.1.1.1
=
> > webmail.mycompany.com
> >
> > ISA 2004->OWA was working prior to a network maintenance. Now it doesn't
> > work anymore.
> >
> > In the PIX firewall I have an entry that looks like:
> > permit tcp any host 10.1.1.1 eq www
> >
> > permit tcp any host 10.1.1.1. eq 443
>
> You still have to reverse-NAT it (aka Static NAT). Those rules only tell
it
> that the traffic is allowed,...they don't tell it how to make the traffic
> "happen".
>
> --
>
> Phillip Windell [MCP, MVP, CCNA]
> www.wandtv.com
>
>
.
- References:
- Ports needed for ISA 2004 (DMZ)?
- From: Magoo
- Ports needed for ISA 2004 (DMZ)?
- Prev by Date: Re: Can't see/use external IP address in services rules
- Next by Date: Re: Can't see/use external IP address in services rules
- Previous by thread: Ports needed for ISA 2004 (DMZ)?
- Next by thread: Re: Ports needed for ISA 2004 (DMZ)?
- Index(es):
Relevant Pages
|
