-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 At 12:07 PM 5/29/2003, you wrote: >http://www.ISAserver.org > > >Makes sense! > >Let's look at it from this direction (now that I see the logic) >I use an XP workstation with the Remote Desktops Addin in my MMC to >manage the other servers locally in my network. Can I remote >administer the remote ISA through this means by connecting to it's >external >IP? Currently I can only administer it through the addin when the >tunnel is up (obviously) > >If this is possible, (I can ping the remote IP from my workstation) >what do I need to do on the remote ISA for this to happen? Sure you can. That way you don't have to worry about TSAC at all. I was under the assumption that you wanted to be able to be on any machine, at any location and be able to get to the TSAC. If you know you will be administering it from a machine with remote destkop on it, they all you have to do is create the packet filter to allow incoming 3389 and you are in good shape. Further, if you know that you will always we administering the system from a known IP, you should restrict the packet filter to that remote IP so that others can't even make a connection. Sounds like you are in good shape. t -----BEGIN PGP SIGNATURE----- Version: PGP 8.0 iQA/AwUBPtZenYhsmyD15h5gEQIJQgCdEJkvH6JtYVYDH08yPTODnt2RdkwAmgLx NrTd2ZQuEMYSBVQPORLMTMUQ =H7wM -----END PGP SIGNATURE-----