Re: Access rule/Authentication problem in ISA 2004

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: "Fredito" <a55504567@xxxxxxxxxxx>
Date: Wed, 11 Oct 2006 13:42:12 +0200

I understand what you say, but still; in 2000 I had a access rule bases on
user authentication for ping and VPN that worked.

I will test the problem in future more deeply. Maybe it has to do with that
my ISA 2004 is totally routed, this was not possible in ISA 2000. Or maybe
it has to do with the order of my rules.

User authentication is also changed in ISA 2004. In 2000 you could add a AD
user or group. In 2004 you must first make a ISA 2004 user set. Double
administration.

Thanks for your responses so far!

"Phillip Windell" <@.> wrote in message
news:uSLWVH%236GHA.3620@xxxxxxxxxxxxxxxxxxxxxxx

The problem is that the Firewall Client can not authenticate all
programs in ISA 2004. In ISA 2000 this was possible. PING and VPN can
not be authenticated in ISA 2004. I wonder if there is a solution for
this problem. Maybe ISA 2006? I tried the new Firewall Client, but this
is also not working.

2000 was the same as 2004 and 2006 concering this.

The Firewall Client will authenticate any program that is "proxyable".
ICMP and GRE are not "proxyable", and hence require NAT. It doesn't
matter if it is 2000, 2004, and (probably) 2006.

--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com

Follow-Ups:
- Re: Access rule/Authentication problem in ISA 2004
  - From: Kevin Longley
- Re: Access rule/Authentication problem in ISA 2004
  - From: Fredito

References:
- Re: Access rule/Authentication problem in ISA 2004
  - From: Fredo
- Re: Access rule/Authentication problem in ISA 2004
  - From: Kevin Longley
- Re: Access rule/Authentication problem in ISA 2004
  - From: Fredito
- Re: Access rule/Authentication problem in ISA 2004
  - From: Kevin Longley

Prev by Date: RE: Domain Name Set Problem
Next by Date: Re: Access rule/Authentication problem in ISA 2004
Previous by thread: Re: Access rule/Authentication problem in ISA 2004
Next by thread: Re: Access rule/Authentication problem in ISA 2004
Index(es):
- Date
- Thread

Relevant Pages

RE: VPN Connects, but no Internal IP or network resources.
... Are you able to get a lease from the DHCP server now? ... I have some experience with using ISA VPN in the past without problems, ... I am still not able to ping by ...
(microsoft.public.isa.vpn)
Re: site to site connection
... the VPN connection is provided by a provider and completely ... i can make a remote desktop connection to the isa server from the branches, ... saying that IP scheme does not work. ... I can´t ping from the netwrok clients. ...
(microsoft.public.isa.vpn)
Re: Access rule/Authentication problem in ISA 2004
... I want acces rules for PING and VPN based on user authenitication. ... The problem is that the Firewall Client can not authenticate all programs in ... In ISA 2000 this was possible. ...
(microsoft.public.isa)
Re: VPN und RDP
... Ist das Standardgateway richtig auf den ISA gesetzt? ... Hilfe & Infos rund um den ISA Server: http://www.msisafaq.de ... SBS-Server) zugreifen mit Ping, ... Ich hab eine neue Regel von VPN auf Inter alles Erlauben ...
(microsoft.public.de.german.isaserver)
ISA 2000, VPN Ping ins LAN geht nicht
... Vom ISA selbst funkt. ... In der LAT steht nur das interne LAN. ... VPN Ping sollte nach Assistent Wizard Einrichtung doch default funktionieren ...
(microsoft.public.de.german.isaserver)