Hi Tom, Managed to sort out the problem, the server has two NIC's first one is Internal LAN, second one connects to a permanent DDI telecom connection to another tcp/ip network and we use there gateway mainly for internet access and AS/400. I was using the second network card as the external interface card, and also using routing and remote access for a demand on dialler (Modem VPN) (routing to another subnetwork). At the time I though this was giving the trouble. What I did was add the second network card to the LAT, and the server instantly starting routing to all devices. A simple fix, but I guess I was foiled with the rule of not adding external interfaces to the LAT, but I guess in this network scenario is a bit different to a standalone server. Anyway thanks for you reply. cheers Chris Hatton Information Systems Engineer Safe Air Ltd Phone: 03 5727793 Mobile: 021 544 570 Email: chris.hatton@xxxxxxxxxxxxx -----Original Message----- From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxxxxxxxxx] Sent: Wednesday, 3 September 2003 12:05 a.m. Subject: RE: ISA Server routing issues Hi Chris, What do you mean a "demand on dialler router"? Do you two external interfaces on this machine, or is this machine participating in a gateway to gateway VPN connection? Thanks! Tom Thomas W Shinder <http://www.isaserver.org/shinder> www.isaserver.org/shinder ISA Server and Beyond: http://tinyurl.com/1jq1 <http://tinyurl.com/1jq1> Configuring ISA Server: <http://tinyurl.com/1llp> http://tinyurl.com/1llp -----Original Message----- From: Hatton, Chris - SAL [mailto:Chris.Hatton@xxxxxxxxxxxxx] Sent: Monday, September 01, 2003 5:36 PM To: [ISAserver.org Discussion List] Subject: [isalist] ISA Server routing issues http://www.ISAserver.org Hi All, I have recently installed sbs2000, and have a frustrating problem with ISA Server. Ever since I have installed a demand on dialler router, the server cannot access or ping any external websites or connect using any Winsock services eg. Telnet, pop3, smtp. I have set up only the IP of the machine as client address list and allow all sites contents rules and for all protocols and any request. On the server the webproxy service connects fine, but no firewall connection available, the firewall logs shows the request coming from the server and tcp port, but does not connect after a long timeout. All the other clients have no problems connecting to webproxy, and Winsock applications using the firewall client, but without it they also have the same issue as the server. I have set up dozen's of other ISA server before without DOD's and had no problems, is there something I have overlooked? Hope you can help. Cheers Chris Hatton Information Systems Engineer Safe Air Ltd Phone: 03 5727793 Mobile: 021 544 570 Email: chris.hatton@xxxxxxxxxxxxx ____________________________________________________________________ CAUTION - This message may contain privileged and confidential information intended only for the use of the addressee named above. If you are not the intended recipient of this message you are hereby notified that any use, dissemination, distribution or reproduction of this message is prohibited. If you have received this message in error please notify Safe Air Ltd immediately. Any views expressed in this message are those of the individual sender and may not necessarily reflect the views of Safe Air. _____________________________________________________________________ For more information on the Safe Air Group, visit us online at http://www.safeair.co.nz/ _____________________________________________________________________