RE: ISA packet forwarding?

• From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Wed, 20 Oct 2004 08:16:24 -0500

What's the default gateway on the FE Exchange Server? 


Tom
www.isaserver.org/shinder
Tom and Deb Shinder's Configuring ISA Server 2004
http://tinyurl.com/3xqb7
MVP -- ISA Firewalls


-----Original Message-----
From: Mustafa Cicek [mailto:mbcicek@xxxxxxxxx] 
Sent: Wednesday, October 20, 2004 9:22 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] ISA packet forwarding?

http://www.ISAserver.org

Hi!
The problem is this time about packet forwarding/routing problem:
1) If I try to connect to front-end Exchange over POP3/IMAP4 or SMTP
from
the external Outlook/Outlook Express clients, the connection is failed
on
ISA server.
ISA server accept packets first on the external NIC. Then it does not
forward (?) the packets to internal front-end Exchange. ISA logfile
tells
failed connection. The POP3/IMAP4/SMTP packets don't reach to front-end
server.

2)I can connect to front-end Exchange directly from ISA server by using
POP3/IMAP4 or SMTP over Outlook Express client.

Is it a forwarding problem from external NIC of ISA to internal network?
Perhaps my configuration is a problem?

I created the rules and publishing on ISA for POP3/IMAP4/SMTP. I list
you
the configuration in my network:

My network:
Internet > NetscreenFW1 > ISA 2004 > NetscreenFW2 > Internal network
with
Windows 2003 AD + Exchange 2003 SP1 FE/BE

ISA-Server:
External IP: 213.183.4.125
Internal address: 10.10.4.254

HOSTS file on ISA has:
10.10.4.1 owa.mydomain.com #That is the IP address of front-end
Exchange.

NetscreenFW2:
The networking bettween ISA 2004 (internal interface) and NetscreenFW2
is
transparent.

External DNS:
A record: 213.183.4.125 exchange.mydomain.com

Front-end Exchange:
IP address: 10.10.4.1

Back-end Exchange:
IP address: 10.10.4.2

Global Catalog/DC/DNS:
IP address: 10.10.4.3

Internal DNS:
A records:
10.10.4.1 fe.mydomain.com #Front-end
10.10.4.1 owa.mydomain.com
10.10.4.2 be.mydomain.com #Back-end with mailboxes 
10.10.4.3 gc.mydomain.com #Global Catalog

MX record:
10.10.4.1 fe.mydomain.com

Outlook client profile:
POP3 server: exchange.mydomain.com
SMTP server: exchange.mydomain.com
IMAP4 server: exchange.mydomain.com

Best Regards
Mustafa

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

Other related posts:

• » ISA packet forwarding?
• » RE: ISA packet forwarding?
• » RE: ISA packet forwarding?
• » RE: ISA packet forwarding?
• » RE: ISA packet forwarding?

1. Home
2. isalist
3. Archive
4. 10-2004

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---