Single-NIC configuration

From: David King (davidking_at_devnull.spamcop.net)
Date: 03/15/05

• Next message: Gabe Matteson: "Re: ISA 2004 Cache"
• Previous message: Phillip Windell: "Re: ISA 2004 Cache"
• Next in thread: Drew Edmundson: "Re: Single-NIC configuration"
• Reply: Drew Edmundson: "Re: Single-NIC configuration"
• Messages sorted by: [ date ] [ thread ]

Date: Tue, 15 Mar 2005 11:06:44 -0800

    Hi, there, I seem to have some basic misunderstandings about ISA's
purpose, functionality, name, rank, and serial number, so please correct me
if I'm wrong.
    We have a SonicWall firewall appliance that accepts our internet
connection, performs NAT routing for the internal machines, and performs
one-to-one NAT for six external IP addresses. He's a busy guy.
    Since we will eventually need to perform more than six services, we'd
like to start forwarding ports instead of using one-to-one NAT for those
services. Doing this using the SonicWall is fine, but I'd like to leverage
ISA server, since it gives some finer controls over that.
    So basically I'd like to place a machine (the ISA server) in the DMZ of
the SonicWall, and assign that DMZ an outside IP address. Then it would pick
up requests for, say, port 143, and pass that off to the internal network.
If I'm not mistaken, ISA calls this "Server Publishing," and only supports
this in a multiple-NIC environment, where it is actually performing the
routing instead of the SonicWall. Am I wrong?
    A caching proxy server would also be nice, and according to the
literature I've seen, is the only supported purpose for a single-NIC'd ISA
server. Is this accurate?

    Would it be possible to go ahead and give the ISA server two NICs,
attach them to the same switch, and place that switch in the DMZ of the
SonicWall, and then have it perform routing for these ports? Would this
serve any purpose? Does this offer any immediately visible drawbacks?

Thank you for any input.

--
David King
ISA far-from-expert

• Next message: Gabe Matteson: "Re: ISA 2004 Cache"
• Previous message: Phillip Windell: "Re: ISA 2004 Cache"
• Next in thread: Drew Edmundson: "Re: Single-NIC configuration"
• Reply: Drew Edmundson: "Re: Single-NIC configuration"
• Messages sorted by: [ date ] [ thread ]

Relevant Pages ISA and SonicWall (was Cannot connect through ISA Server to www.microsoft.com) ... and wishing to learn more about SonicWall products. ... removing ISA from the SBS server. ... Personally I think it is a bad idea not to offer ISA Server with SBS ... (microsoft.public.windows.server.sbs) Re: Probleme mit Site-2-Site-VPN SonicWall und ISA2004 ... stell mal in der Sonicwall die MTU Grösse auf einen niedrigeren Wert. ... MVP ISA Server ... Hilfe & Infos rund um den ISA Server: http://www.msisafaq.de ... das ich in die Remote-Site auch nicht mit ... (microsoft.public.de.german.isaserver) Re: Probleme mit Site-2-Site-VPN SonicWall und ISA2004 ... stell mal in der Sonicwall die MTU Grösse auf einen niedrigeren Wert. ... MVP ISA Server ... Hilfe & Infos rund um den ISA Server: http://www.msisafaq.de ... das ich in die Remote-Site auch nicht mit ... (microsoft.public.de.german.isaserver) Re: Site2Site ISA2004-Sonicwall TZ150 ... Die Verbindung funktioniert jetzt gut. ... die Protokollierung auf dem ISA zeigt auch die erfolgreiche Verbindung an. ... Gateway auf den Sonicwall Router. ... MVP ISA Server ... (microsoft.public.de.german.isaserver) Re: ISA 2000 Restore (via Virtual PC 2004) ... I was deleting them on purpose, thru the mmc where I was ... > redeploying another isa server for other purposes, and I thought I was on ... > that server when deleting them.. ... (microsoft.public.isaserver)

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint