You don't have to install the FW client if you are just giving them outbound
web--you just put the ISA server name (or internal ip) in their proxy
settings...
The clients will keep the default GW as the local router (the gw must be on
the same subnet as the client.) If you do install the FW client, everything
will still work just fine.
The only tricky part is if you want to create a SecureNAT client on Site 2
or Site 3-- to do this, you'll need a "next-hop" map on the internal router
on Site1 to forward packets coming from Site2 and Site3 not destined for the
internal network to the internal interface of the ISA server.
hth
t
http://www.ISAserver.org
My network is setup with 3 Sites which are redundantly connectd via PPP links using Private Addressing. Site 1 192.168.10.x Site 2 192.168.20.x Site 3 192.168.25.x.
Each site has a Router running OSPF. My Main Site (Site 1) has a second router connected to the Internet for web surfing et al. All other sites go to Site 1 to access the Internet.
I want to put the ISA Server 2004 in Front of the Internet Router to allow outbound web surfing and email, and inbound access to our web and Email servers. If I install the FW Client on All of my hosts at every site, will I use their local router as their Default GW or the IP address of the ISA Server's Internal Interface? In other words, will the FW Client know to route through the local router of each subnet in order to connect to the the other subnets and ISA Firewall?
Also, does this mean that each of my hosts at each site will need to go through the ISA Server to connect to hosts at the other subnets or will they simply bypass the ISA?
This may be a dumb question but for whatever reason, I can find the answer.
Thanks in advance.
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as: thor@xxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
