You haven't described what rules you have in place for the VPN clients. By default, they get nothing. ------------------------------------------------------- Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/Jim_Harrison/ http://isatools.org Read the help / books / articles! ------------------------------------------------------- -----Original Message----- From: Syed, Mohsin Ali [mailto:SMohsin@xxxxxxxxx] Sent: Monday, November 28, 2005 09:04 To: [ISAserver.org Discussion List] Subject: [isalist] Quarantine VPN on ISA Server 2004 ( Q vpn clients cant see internal network) http://www.ISAserver.org Hi All Implemented Quarantine VPN with ISA server 2004, I can connect to the quarantine server with the CMAK profile, quarantine check validation passed, with no issues, even it removed VPN client from quarantine mode. But the problem here is I can't access internal network I have been testing on both the scenario 1) Quarantine with ISA 2004 2) Microsoft Quarantine service (with out ISA) using RAS and IAS On both I am facing the same problem Quarantine VPN clients cant access internal network and they can't ping any internal network On the server I have added the routes for my internal network segments using internal NIC as gateway for internal networks When I connect from VPN client my authentication is fine, getting connected to the VPN server, and client is removed from the quarantine mode. I tried so many things but no use please help Regards Mohsin Network Admin ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned.