[SPAM POSSIBILITY] RE: PPTP VPN client access on ISA 2004
- From: "Mark Wrightson" <mark.wrightson@xxxxxxxxxxxxxxxx>
- To: <isalist@xxxxxxxxxxxxx>
- Date: Wed, 16 Feb 2005 16:25:21 +0000
Tom
How do I configure the system policy ? The system policy editor won't
let me make meaningful changes to the rule or disable it. It's system
policy number12 (Allow VPN client traffic to ISA server)
Mark
>>> tshinder@xxxxxxxxxxx 2/16/2005 3:53:25 PM >>>
http://www.ISAserver.org
Hi MW,
Configure System Policy to accomplish this task.
Thanks for getting the book! :)
Tom
www.isaserver.org/shinder
Tom and Deb Shinder's Configuring ISA Server 2004
http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
-----Original Message-----
From: MW [mailto:mark.wrightson@xxxxxxxxxxxxxxxx]
Sent: Wednesday, February 16, 2005 6:30 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] PPTP VPN client access on ISA 2004
http://www.ISAserver.org
Would like to move to ISA 2004 form ISA 2000. Busy testing / learning
(Using Toms book)
On ISA 2000 we allow L2TP and PPTP VPN client access. However we limit
the
PPTP access to a small number of users where we have NAT-T issues. To
make
them more secure we disable the default filters that allow PPTP access
from all external addresses . Then we ceate filters that allow PPTP
access
only from the IP addresses of our PPTP users (we make the get a fixed
IP
address from the ISP).
We can't seem to do the same in ISA 2004. When we allow PPTP VPN
client
access the system policy allows access from all external addresses.
Doesn't seem to be any way of disabling this so we can ceate our own
rule
Any ideas how I can get this to work
MW
(Am looking at certificate based EAP-TLS for PPTP access as an
alternative
but have problem - will post another query)
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
mark.wrightson@xxxxxxxxxxxxxxxx
To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
**********************************************************************************
This e-mail and its attachments are intended for the above named only and may
be confidential. They are intended to be used by the addressee solely for the
purpose of conducting business with Northgate Plc and its associated companies.
If they have come to you in error you must delete them, take no action based on
them, nor must you copy or show them to anyone.
Security Warning:
Please note that this e-mail has been created in the knowledge that Internet
e-mail is not a 100% secure communications medium. You acknowledge that you
understand and take account of this lack of security when e-mailing us.
Viruses:
Although we have taken steps to ensure that this e-mail and attachments are
free from any virus, we advise that in keeping with good computing practice the
recipient should ensure they are actually virus free and Northgate Plc accepts
no liability for such viruses.
Data Protection
From time to time we may wish to send you information relating to our products
and services by email. Your email address will be for sole use by our company
and companies within the Northgate plc group of companies and will not be
passed out to any third parties. If you do not wish to receive information by
email then please reply to this email with the word 'remove' in the subject
line. Please include your exact email address and company name. We will remove
you immediately from our mailing list.
Northgate Plc
Norflex House
Allington Way
Darlington
Co Durham
DL1 4DY
Registered in England No. 53171
**********************************************************************************
Other related posts:
