Re: ISA Server Problem

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: "Phillip Windell" <philwindell@xxxxxxxxxxx>
Date: Mon, 4 Jun 2007 10:43:30 -0500

1. Get rid of the external DNS Server.
2. Add the external DNS Server to the forwarders list on you AD/DNS. This should
be the only place it appears,..never anywhere else.
3. Create an Access Rule for anonymous outbound DNS that allows the AD/DNS to
make outbound DNS queries. This should be the only machine allowed to do this to
eliminate machines with rouge DNS entries.
4. Create Access Rules for whatever else you need to do after that.

--
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft, or
anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html

Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc

Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp

Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------

<john peter> wrote in message news:20076292936peter143p@xxxxxxxxxxxxxxxxx

When i try to install the ISA2004, automatically the internet is not working,
what is the setup i have to make?
LAN IP:172.31.40.3
SM:255.255.254.0

DNS:172.31.40.10

Internet IP:192.168.1.10
SM:255.255.255.0
SM:192.168.1.1

DNS:218.248.16.224

how to deploy the internet through proxy server to all my 172.31.40.1-255
range

EggHeadCafe.com - .NET Developer Portal of Choice
http://www.eggheadcafe.com

References:
- ISA Server Problem
  - From: john peter

Prev by Date: Re: Do I need an ISA server for Exchange <=> Windows Mobile synchronisation?
Next by Date: Import configuration
Previous by thread: Re: ISA Server Problem
Next by thread: Re: Publishing an internal Windows 2000 Terminal Server
Index(es):
- Date
- Thread

Relevant Pages

Re: internal domain and external domain
... create the www2 on the internal DNS server and give it the address of the external DNS server, by doing this even if the www2 on external DNS server changes the internal will always ask to the external DNS server for that record, this is better and less work than create the www2 on both servers with the final IPaddress, because each time that you needed to change the IPAddress of that record you would need to change on both servers, by creating an hierarchal structure if you change only on 1 server all others will know about it. ... internal domain and external domain are same, how will be the forwarding work? ...
(microsoft.public.windows.server.active_directory)
Re: outbound email problems
... behind isa 2000 server. ... i run smtp diag i am told that it cant find the external dns server. ...
(microsoft.public.win2000.dns)
Re: outbound email problems
... behind isa 2000 server. ... use the internal dns, if i use the server = (external dns server ip ... i run smtp diag i am told that it cant find the external dns server. ... nsatc.net (Record type = 2) Unknown record type ...
(microsoft.public.win2000.dns)
Re: Help with ipfw rules to allow DNS queries through
... I am currently using an external DNS server via resolv.conf, ... established connections (both udp and tcp) to pass through would allow ... ${fwcmd} add pass tcp from any to $53 setup ...
(FreeBSD-Security)
Re: CA antivirus software will not update after installining ISA 2004
... Expand ServerName, where ServerName is the name of your ISA Server ... and then click Create New Access Rule. ... Microsoft CSS Online Newsgroup Support ...
(microsoft.public.windows.server.sbs)