RE: Will ISA2004 do this?

---

• From: v-edtian@xxxxxxxxxxxxxxxxxxxx (Edward Tian)
• Date: Tue, 13 Sep 2005 06:35:32 GMT

---

Dear Gary:
Thank you for posting here. Glad to see you again. :)

I assume that network topology as followings:

(Main office)SBS/ISA2004----------Internet--------Netgear Firewall-------8
Workstations(Branch office)

Yes, we can do this without difficulties. One thing I want to clarify is
that no matter who initiates the connection request, the workstations
behind the endpoint will be able to use the tunnel to access the
SBS/ISA2004.

In addition, since there are so many third-party hardware firewalls that
support site-to-site VPN, and each of the manufacturers uses their own
software, we are not able to provide you the steps to implement the
deployment. You may contact the vendor of this VPN device for more detailed
information.

Based on my research, here I would like to provide you some useful articles
which describe the scenario of establishing an IPSec site-to-site tunnel
between ISA 2004 Firewall and a hardware firewall router.
http://www.isaserver.org/articles/2004isadlink.html

Implementing Checkpoint NG R55 Firewall and Microsoft ISA 2004 Firewall
IPSec Site-to-Site VPN
http://www.isaserver.org/articles/2004sitetositecpv2.html

Hope the above information helps. I look forward to hearing from you.

Have a nice day! :)

Best Regards
Edward Tian(MSFT)
Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security
======================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.
======================================================
This posting is provided "AS IS" with no warranties, and confers no rights.

--------------------
| From: "Gary Karasik" <gkarasik@xxxxxxx>
| Subject: Will ISA2004 do this?
| Date: Sun, 11 Sep 2005 22:20:43 -0700
| Lines: 11
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2900.2670
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2670
| X-RFC2646: Format=Flowed; Original
| Message-ID: <#jze6m1tFHA.3500@xxxxxxxxxxxxxxxxxxxx>
| Newsgroups: microsoft.public.windows.server.sbs
| NNTP-Posting-Host: 216.115.232.13
| Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.phx.gbl
| Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:152515
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Hi,
|
| Here's the scenario: Branch office with 8 workstations behind a Netgear
| VPN/Firewall (it's an IPSec/VPN endpoint). Is it possible to configure
this
| so that the SBS/ISA2004 server initates the connection back to the
endpoint
| and have the workstations behind the endpoint use the resulting tunnel to
| connect back to the SBS/ISA2004?
|
| GaryK
|
|
|

.

---

• References:
  • Will ISA2004 do this?
    • From: Gary Karasik

• Prev by Date: RE: make sbs backup eject tapes
• Next by Date: Re: Exchange 2003 and SBS 2003 Premium
• Previous by thread: Will ISA2004 do this?
• Next by thread: recommendations for wireless?
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: How do I turn off SP2 firewal Group Policy setting ... firewall setting on the server side, it is a client side policy, you do not ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... Did that turn off the windows firewall on the server too? ... (microsoft.public.windows.server.sbs) Re: Firewall on Clients ... thanks for using SBS newsgroup. ... Microsoft CSS Online Newsgroup Support ... |> Can I assume you are referring to the Windows Firewall on the XP SP2 ... |> client computers. ... (microsoft.public.windows.server.sbs) RE: http://companyweb /remote /backup /Monitoring HELP ... contact your router vendor or follow the router user specifications to ... If there is a hardware firewall or router, you will not see the firewall ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... (microsoft.public.windows.server.sbs) RE: FTP Client issues ... Do you mean you are using RRAS as firewall of your SBS? ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... | Thread-Topic: FTP Client issues ... (microsoft.public.windows.server.sbs) RE: RWW through server using site to site VPN to workstation ... Click Select Remote Users, check if the domain user is in the users list. ... Additionally have you installed any software firewall or hardware firewall ... Microsoft CSS Online Newsgroup Support ... (microsoft.public.windows.server.sbs)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.sbs  > 2005-09