Re: DC Replication through ISA 2004

And the final post on this:

Yes, changing the routing relationship to route works, I should have
seen this really, somebody once told me that IPSec doesn't work through
NAT, but I forgot.

Also, if anyone is interested, I removed the IPSec from the DC's and
followed this tutorial:
http://www.isaserver.org/articles/2004perimeterdomain.html

And that works too, but thats a little registry tweak, why this one and
not the MS link, because this is much more step by step, and it's very
easy to follow. And it's specific to ISA 2004.

Thanks for your time and advice.
Shaine Fisher

.

Relevant Pages

  • Re: Win 2003 Server only talking with local Subnet
    ... There are no IPSec filters or policies running. ... with one IP Address and it can ping the firewall without issue. ... IPv4 Route Table ...
    (microsoft.public.windows.server.networking)
  • Re: To IPsec or not to IPsec
    ... | Usually after the SA is established you'll get a new route entry, ... That does not make sense for end-to-end encryption. ... specifies what peers should engage certain types of IPsec encryption. ...
    (comp.os.linux.networking)
  • Re: terminating IPSec vpn on multiple interfaces
    ... IPSEC on the second interface for RA clients. ... much dynamic so putting in a route for them is an admin nightmare. ...
    (comp.dcom.sys.cisco)
  • Re: IPSEC to Checkpoint SPOOFING_PACKET_DROPPED
    ... >I am trying to setup a IPSEC from ISA 2004 to a Checkpoint firewall ... > open the Open the IPSec Monitor snap-in I do not see anything in the ... When I do a route print I do not see any entries for the ... remote site gateway is perceived as spoofing-and the traffic is denied. ...
    (microsoft.public.isa.vpn)
  • Re: terminating IPSec vpn on multiple interfaces
    ... IPSEC on the second interface for RA clients. ... much dynamic so putting in a route for them is an admin nightmare. ... L2L IPSEC connection. ...
    (comp.dcom.sys.cisco)