Going from a single ISA to a Back-to-back system will require: 1. moving the public IP(s) to the new ISA 2. modifying the old pub rules to accommodate the new IP config 3. duplicating all the rules to the new ISA, but pointing them to the old ISA behind it. Internet | New ISA | Old ISA | LAT Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/authors/harrison/ Read the books! ----- Original Message ----- From: "Michael Lippman" <Michael.Lippman@xxxxxxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Sunday, January 06, 2002 18:26 Subject: [isalist] Back to Back DMZ http://www.ISAserver.org OK, I have the book. I have read about back to back DMZ configurations. I also read the article on the website specific to back to back configurations. I am currently running one ISA server and have plans to setup a back to back configuration. I read the portion of the article that discussed the server chain for incoming and outgoing requests. In the future I plan to have a front end/back end exchange environment. My www server is also internal. What happens to my server publishing rules that are pointing to the external interface of my current ISA. I guess I am just not making the connection as far as what happens to my existing server publishing rules if the servers are to remain on my internal network. Any ideas will be sure to help. Thanks again, MRL ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')