Re: Back to Back DMZ
- From: "Jim Harrison" <jim@xxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Mon, 7 Jan 2002 06:36:58 -0800
Going from a single ISA to a Back-to-back system will require:
1. moving the public IP(s) to the new ISA
2. modifying the old pub rules to accommodate the new IP config
3. duplicating all the rules to the new ISA, but pointing them to the old
ISA behind it.
Internet
|
New ISA
|
Old ISA
|
LAT
Jim Harrison
MCP(NT4, W2K), A+, Network+, PCG
http://isaserver.org/authors/harrison/
Read the books!
----- Original Message -----
From: "Michael Lippman" <Michael.Lippman@xxxxxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Sunday, January 06, 2002 18:26
Subject: [isalist] Back to Back DMZ
http://www.ISAserver.org
OK,
I have the book. I have read about back to back DMZ configurations. I
also read the article on the website specific to back to back
configurations. I am currently running one ISA server and have plans to
setup a back to back configuration. I read the portion of the article that
discussed the server chain for incoming and outgoing requests. In the
future I plan to have a front end/back end exchange environment. My www
server is also internal. What happens to my server publishing rules that
are pointing to the external interface of my current ISA. I guess I am
just not making the connection as far as what happens to my existing
server publishing rules if the servers are to remain on my internal
network.
Any ideas will be sure to help.
Thanks again,
MRL
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
Other related posts:
