Hi Joseph, Got a Visio of this? Even better, with IP addressing info on the pic, would make it easier to figure out what's going on. Thanks! Tom www.isaserver.org/shinder Tom and Deb Shinder's Configuring ISA Server 2004 http://tinyurl.com/3xqb7 MVP -- ISA Firewalls -----Original Message----- From: josephk [mailto:josephk@xxxxxxxxx] Sent: Friday, December 03, 2004 5:04 PM To: [ISAserver.org Discussion List] Subject: [isalist] Up-stream proxy http://www.ISAserver.org Hi All, My setup is: LINE 1 EXT ISA honeypot INT ISA DMZ PARIMETER INTERNAL LINE 2 EXT ISA honeypot INT ISA (THIS IS SHARED) basicly 2 lines funneling down to 1 internal ISA box. Works for http but not for smtp or ftp. DMZ I'm trying to share the DMZ behind the ISA boxes. I've noticed some strange things going on when coming in on line 2. It seems that some replies come back through line 2 but others such as smtp and ftp Replies rather then coming back out through line 2 go out through line 1. Is there a way to utilize upstream proxy settings to have the replies sent to what ever line a request arrived on? I have finally got one network setup the way I want or at least now I can start to Monitor and load test to make sure that all my rules, routes and doubts<grin> are tested. I've also installed a second line so that I can get another test network setup that will Also be a back to back setup. I want to test out my own VPN to VPN. So, I bought some Of the Linksys/Cisco type of routes and switches for testing. I'm looking forward to that! What I'm wondering, I'd like to share the internal DMZ zone with both networks. Mostly for Web publishing and DNS. I'm running out of machines! My setup is different then using a cool sounding product such As rainfinity. Is it a good idea and possible to setup the 172.16.0.0 for both internal DMZ's? Any thoughts on different test environments would be appreciated. Thank you, Joseph ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx