[isalist] Re: Problem Publishing server rule in Private DMZ
- From: "D PIETRUSZKA USWRN INTERLINK INFRA ASST MGR" <DPietruszka@xxxxxx>
- To: <isalist@xxxxxxxxxxxxx>
- Date: Wed, 11 Oct 2006 07:27:23 -0400
http://www.ISAserver.org
-------------------------------------------------------
Luigi, looks like you have two problems.
The first one, I'm sorry but I don't understand which one is the issue.
Give us some more details and probably we can help.
Regarding the routing or nating between your DMZ and internet, of course
will work when you use NAT.
Your ISA must NAT the traffic between those two networks. If you have
multiple internal subnets, in that case you should use routing but not
when you are connecting two internet.
Regards
Diego R. Pietruszka
-----Original Message-----
From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-bounce@xxxxxxxxxxxxx]
On Behalf Of Luigi - Malmostoso
Sent: Wednesday, October 11, 2006 5:32 AM
To: isalist@xxxxxxxxxxxxx
Subject: [isalist] Problem Publishing server rule in Private DMZ
http://www.ISAserver.org
-------------------------------------------------------
Hi to all and sorry for my English.
I have ISA 2004 sp2 on w2k3 sp1 and patched.
ISA is member server w2k3 domain
3 nic on ISA: #1(external) with multiple public IP, #2(DMZ) 10.x.x.x/8,
#3(LAN) 192.168.10.x/24
Web server publishing rules external --> DMZ work fine
Secure Web server publishing rule external --> DMZ work fine
Server publishing rule external --> LAN work fine
Server publishing rule external --> DMZ don't work (this is the problem)
Network rules:
Relation Perimeter net <--> internal net is route (for intradomain
communications:
http://www.isaserver.org/articles/2004perimeterdomain.html)
Relation Perimeter net <--> external net is route
When test to connect to telnet server (for example) published on my dmz
isa
denied but log record is:
Client ip: public ip - destination: Localhost (???) why not ip of my
server
in DMZ???
If I change relation perimeter <--> External in NAT all work.
Thank,
luigi
------------------------------------------------------
List Archives: //www.freelists.org/archives/isalist/
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server Articles and Tutorials:
http://www.isaserver.org/articles_tutorials/
ISA Server Blogs: http://blogs.isaserver.org/
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
Report abuse to listadmin@xxxxxxxxxxxxx
------------------------------------------------------
List Archives: //www.freelists.org/archives/isalist/
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server Articles and Tutorials: http://www.isaserver.org/articles_tutorials/
ISA Server Blogs: http://blogs.isaserver.org/
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
Report abuse to listadmin@xxxxxxxxxxxxx
Other related posts:
