As long as IPSec isn't enabled on the external NIC, ISA should operate just fine, all other things being equal. Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/pages/author_index.asp?aut=3 http://isatools.org Read the books! ----- Original Message ----- From: Brewer, Lewis To: [ISAserver.org Discussion List] Sent: Monday, September 30, 2002 11:32 AM Subject: [isalist] ISA and IPSEC Based internal Network http://www.ISAserver.org Ok here is the scenario. 1. Internal Network is all running with IPSec. 2. Trying to setup ISA to act as firewall for the network 3. ISA is installed on a server with IPSec enabled on the NICs The question I have is this all possible? Or is there something I am over looking here. Now I have set up a simulation of all this in my lab for testing. There is an AD with 5 workstations, an ISA server with 3 workstations with IIS running on the other side of the ISA. I have enable IPSec on all machines on the inside of the network like we want, and no IPSec on the machines simulating the Internet. Suggestions are always welcomed. Lewis Brewer ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Exchange Server Resource Site: http://www.msexchange.org/ Windows Security Resource Site: http://www.windowsecurity.com/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')