Re: IP address is spoofed

Tech-Archive recommends: Fix windows errors by optimizing your registry

Then how to configure for vpn client ?

Daniel

"Phillip Windell" <philwindell@xxxxxxxxxxx> wrote in message
news:efBjci4zHHA.4652@xxxxxxxxxxxxxxxxxxxxxxx

"Daniel" <danieltbt05@xxxxxxxxx> wrote in message
news:e$BLuXyzHHA.5408@xxxxxxxxxxxxxxxxxxxxxxx
What do you mean by no range for vpn client ?

I mean exactly that.

I use static ip for vpn client

That doesn't matter.

and if i specify full ip range in internal network then there is no ip
for vpn client to be used.

That isn't what you do. They are not a separate IP Segments. It is not
even possible to "assign" an IP range to the VPN Clients Object in the ISA
MMC. So when you leave out a chunk of the range those become part of the
External Network Object, not the VPN Users Object.

Btw i've configure port forwarding in the WAN router to ISA for vpn
connection. Would that be the issue also ?

No that is not an issue.
Although it sounds like a home user product by the term "port forwarding".
Technically there is no such thing as "port forwarding". The "marketing
people" of such products have butchered the dictionary and just "made up"
terms that don't exist in order to sell you something and those terms have
infected the IT industry. The ports aren't doing anything,..nothing is
being done to them,..the ports are going anywhere. The true action being
performed happens at Layer3, not Layer4. The focus is on the IP# not the
port number and the true technical term for it is either Static NAT or
Reverse NAT. Now there is a thing called VPN Passthrough that has to be
performed to cover for the GRE Protocol and that happens in combination
with the Static NAT.

--
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or
Microsoft, or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html

Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc

Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp

Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------




.

Relevant Pages

  • Re: IP address is spoofed
    ... vpn client to be used. ... Although it sounds like a home user product by the term "port forwarding". ... Microsoft Internet Security & Acceleration Server: Partners ... Microsoft ISA Server Partners: Partner Hardware Solutions ...
    (microsoft.public.isa)
  • Re: IP address is spoofed
    ... Exclusions in your DHCP Scope so the VPN Client does not "step on" another ... Microsoft Internet Security & Acceleration Server: Partners ... Microsoft ISA Server Partners: Partner Hardware Solutions ...
    (microsoft.public.isa)
  • Re: Cisco VPN Client through SBS2k3 - cannt connect
    ... Hi Daniel ... Some time ago I had to configure a Zyxel vpn client through ISA 2k4 ... with port 50. ...
    (microsoft.public.windows.server.sbs)
  • RE: Cisco vpn client behind ISA not working > vpn concentrator
    ... well if that was the problem, that your vpn client isn't a member of your ... > I'm trying to connect to a cisco VPN concentrator and opened port UDP, ... > ISA server en configures the ISA as default gateway. ... Must this desktop be a member if the domain? ...
    (microsoft.public.isa.vpn)
  • Re: not listening on port 3389
    ... How about any VPN client software? ... Before reformatting, RD worked just fine. ... listening on port 3389. ...
    (microsoft.public.windowsxp.work_remotely)