Re: WPAD and Manual Proxy server setting for IE (for internal acce

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

It is very simple.
You never ever ever include any other DNS server in the DNS setting of any
machine anywhere on the LAN (including the ISA) that is not your AD/DNS
Server.

You do not put the ISP's DNS on the external nic and the AD/DNS on the
intenral Nic. You either put the AD/DNS on both nics or put it on just one
nic and leave the other blank.

--
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------

"mcp" <zafarhussain@xxxxxxxxxxxxxxxx> wrote in message
news:1185403652.964218.120360@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
On Jul 25, 10:27 pm, "Jim Harrison \(ISA SE\)"
<jmh...@xxxxxxxxxxxxxxxxxxxx> wrote:
What Phil says is true for the most part.
The good news is that PSS engineers have been working very hard to
collaborate with ISVs on ISA plug-in issues and will make every
reasonable
effort to keep the ISV engaged.
Of course, the ISA customer needs to have a case open in both directions
(allows both to manage the case properly).
Yes, some efforts have failed, but most succeed in fine style.

--
Jim Harrison (ISA SE)

This posting implies no warranty and confers no
rights.http://catb.org/~esr/faqs/smart-questions.html

"Phillip Windell" <philwind...@xxxxxxxxxxx> wrote in message

news:e8ixNjvzHHA.4712@xxxxxxxxxxxxxxxxxxxxxxx"mcp";
<zafarhuss...@xxxxxxxxxxxxxxxx> wrote in message

news:1185393719.883553.211600@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

dhcp server assigns clients. like i said dhcp scope option has my dns
server as 192.168.0.5, but for some reason clients are picking
10.0.0.1 which is the isa defualt gateway ip. Not all but some
clients.

Ok, I see.
Well something is giving that to them,...they can't just "pick it up" on
their own. They are either statically configureded machines and you just
haven't noticed it,...or their is a second DHCP Service running
somewhere.

Run "ipconfig /all" on those machines so it will list what DHCP Service
it
picked up the settings from.

If it is the correct DHCP then verify that you don't have conflicting
Scope
Options and Server Options. You should use the Server Options for DNS
and
not the Scope Options becuase DNS is global and is the same no matter
what
subnet the client is in.

--
Phillip Windellwww.wandtv.com

The views expressed, are my own and not those of my employer, or
Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule
Processinghttp://www.isaserver.org/articles/ISA2004_AccessRules.html

Troubleshooting Client Authentication on Access Rules in ISA Server
2004http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-...

Microsoft Internet Security & Acceleration Server:
Partnershttp://www.microsoft.com/isaserver/partners/default.asp

Microsoft ISA Server Partners: Partner Hardware
Solutionshttp://www.microsoft.com/forefront/edgesecurity/partners/hardwarepart...
-----------------------------------------------------

thanks for your reply Jim, its becoming clear now. i had DHCP enabled
in my firewall/router.

Jim can you please clear some points about two nic cards. Phil has
explained but need more clarification.

internal Nic, i have ip address, subnet, NO defualt gateway, for DNS
do i have to put my domain internal DNS server ip, or nothing??
external Nic, i have ip address, subnet, defualt gateway, for DNS do i
put my internal domain DNS server ip or what?? im not connected
directly to the modem, im behind a router, and the router is connected
to the modem. so in theory i have another network..if you see what i
mean..

im a bit confused with these settings.

also do you have any clues as to WPAD does not work automatically on
firewall client, manually it detect fine.

thanks for your help guys..




.

Relevant Pages

  • Re: Urgent! New router and big disaster
    ... NIC, you need to specify an external DNS server for DNS, instead of the ... Both NICs should point to his internal IP for DNS. ... forward ports to it reliably in the router. ...
    (microsoft.public.windows.server.sbs)
  • Re: Cannot connect to RWW from home PC
    ... DNS stuff says your mail server is responding with reply that is not MS ... When we setup this new SBS2003 setup we installed without ISA as it does ... not seeing any problems anywhere regards internet or email - we also run ...
    (microsoft.public.windows.server.sbs)
  • Re: Multi-homed WINS Server does not let me administer it.
    ... Being a VPN Server and even simply running RRAS makes it multi-homed. ... Domain Controllers with the PDF Role are automatically Domain Master Browser. ... Multihomed DCs, DNS, RRAS servers. ... Insure that all the NICS only point to your internal DNS serveronly and none others, ...
    (microsoft.public.windows.server.dns)
  • Re: Cannot connect to RWW from home PC
    ... DNS stuff says your mail server is responding with reply that is not MS ... When we setup this new SBS2003 setup we installed without ISA as it does ... not seeing any problems anywhere regards internet or email - we also run ...
    (microsoft.public.windows.server.sbs)
  • Re: No Internet thru Dual Nics
    ... Windows 2000 Server fully patched. ... DNS server 192.168.254.1 ... I have uninstalled and reinstalled the NICs. ... there are some registry changes to eliminate the ...
    (microsoft.public.windows.server.networking)